README.md
March 14, 2026 ยท View on GitHub
๐ Credential Dumping for Pentesters
A practical credential dumping reference and cheat sheet designed for red teamers, penetration testers, and cybersecurity learners to understand how credentials can be extracted from compromised systems during post-exploitation.
๐ Connect With Us
๐ต Telegram โ Join Channel
โซ Twitter/X โ Follow Us
๐ฃ Discord โ Join Server
๐ผ LinkedIn โ Follow HackingArticles
๐ Training Program
๐ Join Our Cybersecurity Training Program
Hands-on training in Penetration Testing, Red Teaming, and Cybersecurity.
๐ Credential Dumping Techniques
| # | Topic | Description | Article |
|---|---|---|---|
| 1 | ๐ถ Wireless | Extract stored wireless credentials from compromised systems | Read Article |
| 2 | ๐๏ธ Group Policy Preferences (GPP) | Dump passwords stored in Group Policy Preferences | Read Article |
| 3 | ๐ Windows Credential Manager | Extract credentials stored in Windows Credential Manager | Read Article |
| 4 | ๐ง WDigest | Dump cleartext credentials from WDigest authentication protocol | Read Article |
| 5 | ๐ ๏ธ Security Support Provider (SSP) | Extract credentials via SSP injection techniques | Read Article |
| 6 | ๐พ SAM | Dump password hashes from the Windows SAM database | Read Article |
| 7 | ๐ฆ Installed Applications | Extract credentials stored by installed applications | Read Article |
| 8 | ๐๏ธ NTDS.dit | Dump Active Directory credentials from NTDS.dit database | Read Article |
| 9 | ๐ฃ Phishing Windows Credentials | Capture Windows credentials using phishing techniques | Read Article |
| 10 | ๐งฌ Local Security Authority (LSA/LSASS) | Extract credentials directly from LSASS process memory | Read Article |
| 11 | ๐ Clipboard | Capture sensitive credentials copied to the clipboard | Read Article |
| 12 | ๐ DCSync Attack | Simulate a domain controller to dump AD credentials | Read Article |
| 13 | ๐ LAPS | Extract Local Administrator Password Solution credentials | Read Article |
| 14 | ๐งพ Domain Cache Credential | Dump cached domain credentials from Windows systems | Read Article |
| 15 | โ๏ธ Fake Services | Use malicious services to capture credentials | Read Article |
| 16 | ๐ Windows Autologon Password | Extract plaintext autologon passwords from registry | Read Article |
| 17 | ๐ง Internal Monologue | NTLM downgrade attack to retrieve cleartext credentials | Read Article |
| 18 | ๐ Reversible Password Encryption | Dump passwords stored using reversible encryption in AD | Read Article |
| 19 | ๐งพ GMSA | Extract Group Managed Service Account passwords | Read Article |
| 20 | ๐ AD User Comment | Discover credentials stored in Active Directory user comments | Read Article |
