Explore >> Select a destination

You are here

 marcusedmondson.com
Dripping a Little Honey in Your Environment - Marcus Edmondson | Offensive Security | Information Security
| | diverto.github.io
Extracting passwords from hiberfil.sys and memory dumps - Diverto - Information Security Warriors
12.2 parsecs away

Travel
| | When in password hunting mode and having access to the filesystem of the target, most people would reach out to SAM and/or extracting cached credentials. While this can usually be the way to go, it can pose a huge challenge, as the result can depend on the strength of the storage format of the password and the strength of the password itself. Something often overlooked is hiberfil.sys and/or virtual machine snapshots or memory dumps, as they usually contain passwords in plain text. When you have those, there's no need for cracking at all and it doesn't depend on password strength/size.
| | pentestlab.blog
Persistence RID Hijacking Penetration Testing Lab
16.6 parsecs away

Travel
| | Windows operating systems use the RID (Relative Identifier) to differentiate groups and user accounts. It is part of the Security Identifier (SID) and every time a new account or a group is created the number is increased by one. The local administrator group RID is always 500 and standard users or groups typically start with
| | www.deepinstinct.com
LSASS Memory Dumps: Dumping Methods Explained [Part 1] | Deep Instinct
9.2 parsecs away

Travel
| | LSASS memory dump files aid attackers to swiftly extract credentials. Read an in-depth analysis of LSASS dumps as an attack vector & dumping methods.
| | bdtechtalks.com
How to prevent privilege escalation attacks - TechTalks
36.6 parsecs away

Travel
| As digital businesses increasingly rely on complex cloud infrastructures and remote workforces, cybersecurity threats grow, particularly in the form of privilege escalation attacks.