The Secrets to MIMIKATZ - The Credential Dumper

Authors

  • Shairoze Malik DFRSC - Digital Forensic Research and Service Centre, Lahore Garrison University - Main Campus, Sector C DHA Phase 6, Lahore – Pakistan
  • Erej Azeem Lahore Garrison University - Main Campus, Sector C DHA Phase 6, Lahore , Pakistan

Keywords:

Mimikatz, hash dump, lsass, modules, kerberos, tickets, krbtg

Abstract

With the emergence of many credential dumping tools, Mimikatz has become an exceedingly
dramatic tool against Windows users that allows the intruders to fetch plain text passwords. More
over they also target memory to dump password hashes. Mimikatz capacity and potential will be
briefly discussed throughout the paper. Several modules of Mimikatz to dump credentials will
follow, and the paper will conclude with procedures and techniques that may be used as prevention
against Mimikatz attacks that are performed.

Downloads

Published

2025-12-27

Issue

Vol. 5 No. 4 (2021)

Section

Articles