pwdump

pwdump is a credential dumper. [1]

ID: S0006
Type: TOOL
Platforms: Windows
Version: 1.1
Created: 31 May 2017
Last Modified: 13 August 2020

Techniques Used

Domain ID Name Use
Enterprise T1003 .002 OS Credential Dumping: Security Account Manager

pwdump can be used to dump credentials from the SAM.[1]

Groups That Use This Software

References