Differences

This shows you the differences between two versions of the page.

--- method_5_post-exploitation [2023/01/12 00:30] – [Overview] gman
+++ method_5_post-exploitation [2023/01/12 00:31] (current) – [First Thing] gman
@@ Line 46: / Line 46: @@
   - ''lsadump'': dumps LSA Secrets
   - ''pwdump'': dumps password hashes
+Linux passwords are usually found in ''/etc/shadow''.
+  * You can simply copy that file to your attack machine and crack offline (if you have root).
+  * Therefore, priv esc is a key part of acquiring credentials.
 ----