ad_secretsdump
Dump NTLM password hashes and Kerberos keys from a domain controller using secretsdump.py to assess Active Directory security.
Instructions
Dump secrets (NTLM hashes, Kerberos keys) from a domain controller using secretsdump.py.
Args: domain: AD domain username: Domain admin username password: Domain admin password target: Specific target (default: DC) dc_ip: Domain Controller IP hashes: NTLM hash for pass-the-hash (LMHASH:NTHASH)
Input Schema
| Name | Required | Description | Default |
|---|---|---|---|
| dc_ip | No | ||
| domain | Yes | ||
| hashes | No | ||
| target | No | ||
| password | Yes | ||
| username | Yes |
Output Schema
| Name | Required | Description | Default |
|---|---|---|---|
| result | Yes |