peewpw/Invoke-WCMDump peewpw/Invoke-WCMDump

  • Stars
    star
    718
  • Rank 63,070 (Top 2 %)
  • Language
    PowerShell
  • License
    Apache License 2.0
  • Created almost 7 years ago
  • Updated almost 7 years ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
peewpw/Invoke-WCMDump
github

peewpw

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

PowerShell Script to Dump Windows Credentials from the Credential Manager

Invoke-WCMDump

PowerShell script to dump Windows credentials from the Credential Manager

Invoke-WCMDump enumerates Windows credentials in the Credential Manager and then extracts available information about each one. Passwords are retrieved for "Generic" type credentials, but can not be retrived by the same method for "Domain" type credentials. Credentials are only returned for the current user.

Does not require admin privileges!

Author: Barrett Adams (@peewpw)

Example

PS>Import-Module .\Invoke-WCMDump.ps1
PS>Invoke-WCMDump
    Username         : testusername
    Password         : P@ssw0rd!
    Target           : TestApplication
    Description      :
    LastWriteTime    : 12/9/2017 4:46:50 PM
    LastWriteTimeUtc : 12/9/2017 9:46:50 PM
    Type             : Generic
    PersistenceType  : Enterprise

More Repositories

1

Invoke-PSImage

Encodes a PowerShell script in the pixels of a PNG file and generates a oneliner to execute
PowerShell
2,155
star
2

Invoke-BSOD

For when you want a computer to be done - without admin!
PowerShell
280
star
3

DomainFrontDiscover

Scripts and results for finding domain frontable CloudFront domains
Python
53
star
4

PrettyTrusts

A browser based visualization of domain trusts. Give it a csv, get a pretty diagram to play with!
JavaScript
17
star
5

exploithosting

PowerShell
2
star