Sunday, March 1, 2015

Windows Credentials Editor (WCE)

Windows Credentials Editor (WCE) is a security tool to list logon sessions and add, change, list and delete associated credentials (ex.: LM/NT hashes, plaintext passwords and Kerberos tickets).

This tool can be used, for example, to perform pass-the-hash on Windows, obtain NT/LM hashes from memory (from interactive logons, services, remote desktop connections, etc.), obtain Kerberos tickets and reuse them in other Windows or Unix systems and dump cleartext passwords entered by users at logon.

http://www.ampliasecurity.com/research/windows-credentials-editor/

No comments:

Post a Comment

Note: Only a member of this blog may post a comment.