So lately on pen tests I have been focusing on 1) living off the land, and 2) doing everything I possibly can in memory to leave as little footprint as possible. Got to make the forensics guys earn their pay. To that extent I have been doing some what I think of as rather clever tricks with Kali, WMI, powershell, mimikatz, and samba. I wanted to post this up here so that I can easily find it and remember it in the future. Also I figured some people may be interested in it as well.
Continue reading "Dumping creds, and lateral movement without anything touching disk."