Check out the results from our first round of ATT&CK Evaluations at attackevals.mitre.org!

Windows Credential Editor

Windows Credential Editor is a password dumping tool. [1]

ID: S0005
Aliases: Windows Credential Editor, WCE
Type: TOOL
Platforms: Windows

Version: 1.0

Techniques Used

DomainIDNameUse
EnterpriseT1003Credential DumpingWindows Credential Editor can dump credentials.[1]

Groups

Groups that use this software:

BRONZE BUTLER
FIN5
FIN6
Threat Group-3390

References