-
I just released "lsassy" ! Tool to remotely parse lsass dumps using
#impacket and#pypykatz Automate the whole process using my CME module
lsassy : https://github.com/Hackndo/lsassy
CME Module : https://gist.github.com/Hackndo/4326c724ef1e9b71b12f8d104973a799 …
French article about this technique : https://beta.hackndo.com/remote-lsass-dump-passwords/ …
Prikaži ovu nit -
New
#pypykatz version is out! 0.3.3 comes with parsing updates (fixes) and a brand new logo! This version can be used directly with the#volatility3 plugin tweeted earlier. Available on GH and PIP. https://github.com/skelsec/pypykatz …Prikaži ovu nit -
Yaaay! Holidays!
#volatility3 meet#pypykatz. Plugin here: https://github.com/skelsec/pypykatz-volatility3 … Pypykatz code here (pip is not yet up to date!) https://github.com/skelsec/pypykatz …@volatility do you accept plugin PRs on github for version 3?Prikaži ovu nit -
So, I managed to cram the LSASS and registry hive parsing capabilities of
#pypykatz into webassembly via#pyodide Parsing is fully offline and done in your browser. Huge shoutout to@thugcrowd and@xEHLE_ who made the fancy webui for it and hosting it on their servers.https://twitter.com/thugcrowd/status/1177752272618627077 …
-
New version of
#pypykatz is out! Changes: Cmdline parameter structure Added functionality to poll localgroups/sessions/shares over the network (currently supporting windows only, sorry) Added some basic utilities for calculating hashes (nt/lm/dcc..) http://github.com/skelsec/pypykatz … -
There is a
#pypykatz channel now on BloodHound Slack where I'm usually hanging out. If you have suggestions or wanna chat abt the project. http://bloodhoundgang.herokuapp.com -
News flash!
#pypykatz is on pip. All required packages install automatically. !!!It's like magic and stuff!!! Also it's packing LIVE command to dump credentials from the local machine -tons of errors ahead-. Minidump file parsing improved considerably, passing all test! pic.twitter.com/gSlFRocwtC -
Next step is to get
#pypykatz to parse those kerberos tickets from the lsass minidump files and exporting them to ccache.... It is just sooo much work :(((Prikaži ovu nit -
Releasing a new project: pypykatz-server With this you won't need to run
#mimikatz/#pypykatz on the target machine, only a tiny agent (13kB) that takes the info from the server on what parts of the lsass process to read. http://ow.ly/oYcj30o4T2T Vía@SkelSec -
Any VM guru can point me to some material on running windows 2008 (itanium) in a VM (x64)? Lsass minidumps are welcome as well on this matter. I want to make a gift to
@SwiftOnSecurity#pypykatz -
#pypykatz is a complete implementation of parsing the minidump format, used to efficiently parse out hashes/passwords mimikatz style. Also, check out https://github.com/skelsec/pypykatz … for post-ex usage (via CME with https://github.com/Hackndo/lsassy/tree/master/cme …)https://twitter.com/SkelSec/status/1106102380377051137 … -
en l’occurrence je ne suis pas du tout l'auteur de
#lazagne... (mais lazagne se repose sur#pypykatz) essaye: https://github.com/AlessandroZ et@SkelSec -
New version is out!
#pypykatz -platform independent#Mimikatz for LSASS dumps- can now export kerberos tickets to both kirbi and ccache format, making it easy to pass tickets with#impacket Other features: dump credentials in JSON and recursive parsing.https://github.com/skelsec/pypykatz …
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.