Credential Attacks
From offline cracking to lateral movement, these methodologies cover extracting, dumping, and reusing credentials.
CRACKING
John the Ripper
Offline password cracking, rules, and formats.
Start cracking →
CRACKING
Hashcat
GPU-accelerated cracking and optimization techniques.
Start cracking →
DUMPING
Attacking SAM & SYSTEM
Extracting local NTLM hashes.
Dump hashes →
MEMORY
Attacking LSASS
Extracting cleartext credentials and tickets from memory.
Dump memory →
LATERAL MOVEMENT
Pass the Hash
Moving laterally using NTLM hashes.
Move laterally →