RepoMirrors/mimikatz
1
0
Fork 0
mirror of https://github.com/gentilkiwi/mimikatz synced 2025-02-21 12:16:48 +00:00
Code Issues Packages Projects Releases Wiki Activity
295 Commits 2 Branches 12 Tags 20 MiB
cfe7bffa83
Commit Graph

295 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Benjamin DELPY
cfe7bffa83
Merge pull request #351 from vletoux/kcredentialprovider 
add kcredentialprovider.c to mimilib
 2021-06-15 23:50:24 +02:00
Vincent LE TOUX
b73e83cd75 add kcredentialprovider.c 2021-06-15 23:43:50 +02:00
Benjamin DELPY
21840f5bf2 [fix] mimikatz ts::logonpasswords now supports rdesktop (please, use freerdp for NLA) 2021-05-31 00:08:10 +02:00
Benjamin DELPY
b6fbbe3eae [new] mimikatz ts::mstsc now supports clients using mstscax.dll (RDCMan, mRemoteNG, Remote Desktop Manager, ... not only 'mstsc') 2021-05-29 15:25:31 +02:00
Benjamin DELPY
89ec9bb0d1 [fix] ts::logonpasswords now supports freerdp clients 2021-05-28 15:06:58 +02:00
Benjamin DELPY
835757ef1c [new] mimikatz ts::mstsc to try to dump client credentials 2021-05-25 20:34:48 +02:00
Benjamin DELPY
c509fd4a8c [fix] mimikatz ts::logonpasswords to dump more credentials (multiple for same segment + better pattern) 2021-05-18 17:05:42 +02:00
Benjamin DELPY
86679021ee [new] mimikatz ts::logonpasswords (experimental) - try to dump passwords from Terminal Server service (8.1+/2012R2+) 2021-05-17 23:49:18 +02:00
Benjamin DELPY
c54f4162d5 [new] mimikatz dpapi::sccm to dump Network Accounts on endpoints 2021-05-12 22:59:46 +02:00
Benjamin DELPY
5e5771e03b [fix] mimikatz project to include ODBC lib 2021-05-11 20:48:07 +02:00
Benjamin DELPY
734e3f0291 [new] misc:sccm to decrypt SC_UserAccount credentials when SCCM private key access 2021-05-11 20:34:56 +02:00
Benjamin DELPY
e10bde5b16 [fix] AppVeyor indentation 2020-11-03 15:17:58 +01:00
Benjamin DELPY
434e488122 [new] AppVeyor protected zip artifact 2020-11-03 15:16:37 +01:00
Benjamin DELPY
cc953ab7d2 [new] AppVeyor Continuous Integration documented 2020-11-02 00:13:54 +01:00
Benjamin DELPY
315e27e915 [update] AppVeyor configuration (v2) 2020-11-01 23:43:47 +01:00
Benjamin DELPY
9b455e01ff [update] AppVeyor configuration 2020-11-01 23:40:53 +01:00
Benjamin DELPY
7d3417e7a7 [new] AppVeyor Continuous Integration 2020-11-01 23:30:05 +01:00
Benjamin DELPY
fe4e984055 [new] mimikatz lsadump::dcsync supports /user:sid and authentication parameters 
[internal] use of real internal function name Rtl* for crypto system
 2020-09-28 00:04:20 +02:00
Benjamin DELPY
460717fd36 [new] mimikatz misc::spooler 2020-09-25 22:52:24 +02:00
Benjamin DELPY
09fb1f62ab [new] mimikatz lsadump::zerologon encrypted with better arguments 2020-09-18 19:23:17 +02:00
Benjamin DELPY
6191b5a8ea [fix] logic condition in lsadump::postzerologon arguments parsing 2020-09-17 03:39:28 +02:00
Benjamin DELPY
fa42ed93aa [new] mimikatz lsadump::postzerologon, to reinit DC password both in local store and AD 
[change] https instead of http for blog :)
 2020-09-17 03:17:11 +02:00
Benjamin DELPY
880c15994c [new] mimikatz lsadump::zerologon (CVE-2020-1472 @SecuraBV @djrevmoon) 
[new] mimikatz lsadump::dcsync now supports NTLM auth and explicit credentials
[internal] netlogon RPC instead of NETAPI32.dll (support ncap_ip_tcp instead of ncap_np)
 2020-09-16 12:16:07 +02:00
Benjamin DELPY
ba8d11ebe1 [new] ngc::pin for software keys, ngc::decrypt for passwords, etc. 2020-08-24 06:11:42 +02:00
Benjamin DELPY
2d54a1a978 [fix #301] Not using _time32() anymore, not in XP msvcrt 2020-08-16 10:37:36 +02:00
Benjamin DELPY
a2a25cc9f5 [new] mimikatz dpapi::cloudapreg to get some decrypted RefreshToken from the registry (thank you DPAPI) - not AzureAd joined 
[new] mimikatz misc::ngcsign to play with signature even if you don't have access to the real key (NgcSignWithSymmetricPopKey)
 2020-08-09 22:55:49 +02:00
Benjamin DELPY
755505b6f4 [new] dpapi::cloudapkd can now sign a new JWT from the Primary and various keys / context 
[new] misc::aadcookie to get a new JWT for the current user
 2020-08-07 02:28:29 +02:00
Benjamin DELPY
3c497ec667 [update] dpapi::cloudapkd now supports opaquekeyblob for TPM without prior DPAPI encryption for transport (TPM key still DPAPI encrypted ;)) 2020-08-05 10:37:41 +02:00
Benjamin DELPY
29cfd68a0f [fix] undo fix typo 2020-08-05 01:22:50 +02:00
Benjamin DELPY
769c648a04 [fix] typo 2020-08-05 01:17:50 +02:00
Benjamin DELPY
37bc5ce8d0 [new] dpapi::cloudapkd to get a derived key from PRT associated key (software or TPM) 2020-08-05 00:49:55 +02:00
Benjamin DELPY
ff13496b33 [new] sekurlsa::cloudap to dump Azure PRT, session keys and DPAPI keys 
[new] ngc::logondata to dump authentication slot pin and various data (kiwi use only - 2004 up to date)
[new] token::elevate option to impersonate special users
[internal] file reading support reading with backup privilege
 2020-08-04 14:06:21 +02:00
Benjamin DELPY
cf8f9f3ee4 [typo] mimilib knp nIndex 2020-07-15 16:36:17 +02:00
Benjamin DELPY
adbcdfa0ad [new] mimilib NPLogonNotify (thank you @gtworek) 2020-07-15 16:29:30 +02:00
Benjamin DELPY
e10ec9aa5b [fix] freeing memory with CredFree when using CredUnmarshalCredential 
[fix #289] casting FIELD_OFFSET to DWORD, like each time I commit ;)
 2020-06-14 12:52:08 +02:00
Benjamin DELPY
4dd27c0a64 [new] mimikatz & mimidrv support for Windows 10 2004 (build 19041) 2020-05-19 00:56:24 +02:00
Benjamin DELPY
0ac5221a87
Merge pull request #267 from zhangyoufu/patch-1 
fix closing SAM registry key twice
 2020-05-19 00:44:46 +02:00
Benjamin DELPY
125c58b7e5 [fix #284] remove previous TPM header dependency 2020-05-03 13:30:54 +02:00
Benjamin DELPY
44ca2e648a [new] dpapi::tpm to decrypt TPM blob (no secret !) 
[new] net::if (@vletoux / https://github.com/vletoux/OxidBindings )
[internal] exit functions support exiting thread instead of process
 2020-05-02 20:59:56 +02:00
Benjamin DELPY
a5088d9e57 [new] dpapi::create now deals with dpapi::cache to encrypt multiple masterkeys 
[new] dpapi::cache save raw keys instead of only SHA1 of them
 2020-03-08 18:41:50 +01:00
Benjamin DELPY
d07283a20d [new] dpapi::create, to create (minimalist) Masterkeys file from a raw key 
[internal] kull_m_token to deal with own SID et check if local or domain
 2020-03-08 13:38:11 +01:00
Benjamin DELPY
bbb41e854f [fix] dpapi::rdg supports XML nodes without username or domain, but only a password 2020-02-29 11:12:37 +01:00
Benjamin DELPY
cdfccf405e
Merge pull request #268 from timhir/master 
Support for decrypting credentials protected by Credential Guard
 2020-02-27 07:36:13 +01:00
Benjamin DELPY
a5f843b5aa [new] lsadump::dcsync full sync filters deleted accounts by default (/deleted to get them back) 
[new] lsadump::dcsync full sync prints UAC (details with /uac)
[fix] includes again WinDNS.h
 2020-02-26 23:40:00 +01:00
Timo Hirvonen
4af2481be7 Support for decrypting credentials protected by Credential Guard 2020-02-25 11:15:33 +02:00
Benjamin DELPY
57b7267c30 [new] module minidump supports stream size 
[new] module file read with FILE_SHARE_WRITE
[new] module crypto_sk for crypto with SecureKernel algorithms
[new] bcrypt lib to support BCryptKeyDerivation
[enhancement] LSAISO_DATA_BLOB structure & display
[experimental] sekurlsa::msv1_0 normalized structure for LsaIso
[experimental] sekurlsa::kerberos try to acquire session key from LsaIso
[experimental] sekurlsa::dpapi key from msv1_0 when LsaIso (not encrypted)
 2020-02-24 23:52:47 +01:00
Youfu Zhang
f9922d8db7
fix closing SAM registry key twice 2020-02-20 21:46:10 +08:00
Benjamin DELPY
b098bf37cf [new] dpapi::chrome supports AES-256-GCM decryption for new Logins & Cookies 
[new] dpapi::cred & vault::cred now supports double DPAPI for INET & Ivanti credentials
 2020-02-08 12:42:34 +01:00
Benjamin DELPY
6972319852 [new] dpapi::masterkey now supports derivation from NTLM hash for protected user (/protected) instead of password 2020-01-23 10:12:22 +01:00
Benjamin DELPY
60033c8e75 Removing previous SQLite3 dependencies 2020-01-04 19:20:55 +01:00