神器mimikatz密码提取工具-Crypto模块

Module-Crypto

这个模块是最古老的模块之一,拥有CryptoAPI功能。主要是有certutil有利于令牌模仿,给遗留的CryptoAPI功能和CNG隔离服务打补丁

Commands:·providers, stores, sc, scauth, certificates, keys, capi, cng

providers

此命令列出所有提供程序:CryptoAPI,然后是CNG(如果可用)

CryptoAPI providers :
 0. Microsoft Base Cryptographic Provider v1.0
 1. Microsoft Base DSS and Diffie-Hellman Cryptographic Provider
 2. Microsoft Base DSS Cryptographic Provider
 3. Microsoft Base Smart Card Crypto Provider
 4. Microsoft DH SChannel Cryptographic Provider
 5. Microsoft Enhanced Cryptographic Provider v1.0
 6. Microsoft Enhanced DSS and Diffie-Hellman Cryptographic Provider
 7. Microsoft Enhanced RSA and AES Cryptographic Provider
 8. Microsoft RSA SChannel Cryptographic Provider
 9. Microsoft Strong Cryptographic Provider

CNG providers :
 0. Microsoft Primitive Provider
 1. Microsoft Smart Card Key Storage Provider
 2. Microsoft Software Key Storage Provider
 3. Microsoft SSL Protocol Provider

stores

此命令列出系统存储中的逻辑存储

参数
  • /systemstore -可选-必须用来列出系统存储(默认:CERT_SYSTEM_STORE_CURRENT_USER
    可以是以下选项
    CERT_SYSTEM_STORE_CURRENT_USER 或者 CURRENT_USER
    CERT_SYSTEM_STORE_CURRENT_USER_GROUP_POLICY或者 USER_GROUP_POLICY
    CERT_SYSTEM_STORE_LOCAL_MACHINE或者 LOCAL_MACHINE
    CERT_SYSTEM_STORE_LOCAL_MACHINE_GROUP_POLICY或者LOCAL_MACHINE_GROUP_POLICY
    CERT_SYSTEM_STORE_LOCAL_MACHINE_ENTERPRISE or LOCAL_MACHINE_ENTERPRISE
    CERT_SYSTEM_STORE_CURRENT_SERVICE或者CURRENT_SERVICE
    CERT_SYSTEM_STORE_USERS 或者 USERS
    CERT_SYSTEM_STORE_SERVICES 或者 SERVICES

你可能感兴趣的:(神器mimikatz密码提取工具-Crypto模块)