[Tips] Using mimikataz on penetration testing
mimikatz is a tool I’ve made to learn
C and make somes experiments with Windows security.
It’s now well known to extract plaintexts passwords, hash, PIN code and kerberos tickets from memory.
mimikatz can also perform pass-the-hash, pass-the-ticket or build Golden tickets.
Read the password exported in mimikatz directory
Use powershell to bypass AV
procdump lsass process export
Get the Browser password