Today we are going to use new tools which can be use to get windows password in plain text. It works on both 32 bit & 64 bit O.S. We have already known NTLM password cracking methods, but it`s time consuming , & sometimes we could not get password in plain text. But this tools is amazing , which works on method of Pass the pass.
In this tutorial we are going to use this tool in local computer , But in next we will use this tool to get passwords of Remote P.C. using metasploit.
(1)Download tool from here
(2)After Extracting open win32 or x64 depending upon your O.S.
(3)Run as Administration mimikatz.
(4)Now type privilege::debug , this command check if mimikitz running with system privilege
(5)In order to get credential in plain text type this command sekurlsa::logonPaswords full
(6)You can see credential in plain text.
Next we will use metasploit to get credential of Remote P.C.