Dan Griffin's Blog

Comments on security, PKI, smart cards, cryptography, and entrepreneurship.

New cross-platform Windows credential dumping tool

February 22, 2008

http://code.google.com/p/creddump/

From its author:

“creddump is a python tool to extract various credentials and secrets from Windows registry hives. It currently extracts:

    * LM and NT hashes (SYSKEY protected)
    * Cached domain passwords
    * LSA secrets

It essentially performs all the functions that bkhive/samdump2, cachedump, and lsadump2 do, but in a platform-independent way.

It is also the first tool that does all of these things in an offline way (actually, Cain & Abel does, but is not open source and is only available on Windows).”

Search:

Archives

Recent Posts

• Cloud developers
• Microsoft Security Intelligence Report v8
• Windows LNK bug and SCADA vuln
• Mobile devices + Cloud
• Concurrency, Security, and Windows

RSS Feed

Blogroll

Security Focus: