Security Dashboard
ARTICLE
CredDump 0.1 released
Friday 22 February 2008
CredDump is a pure-Python implementation of the bkhive/samdump2, lsadump2, and cachedump utilities commonly used to audit Windows password security.creddump is a python tool to extract various credentials and secrets from Windows registry hives. It currently extracts:
LM and NT hashes (SYSKEY protected)
Cached domain passwords
LSA secrets
It essentially performs all the functions that bkhive/samdump2, cachedump, and lsadump2 do, but in a platform-independent way.
It is also the first tool that does all of these things in an offline way (actually, Cain & Abel does, but is not open source and is only available on Windows).
POSTSCRIPTUM
RELATED ARTICLES
CredDump, Local auditing, Password Cracking, 22 February 2008 : CredDump 0.1 released
