LaZagne

LaZagne is a post-exploitation, open-source tool used to recover stored passwords on a system. It has modules for Windows, Linux, and OSX, but is mainly focused on Windows systems. LaZagne is publicly available on GitHub.[1]

ID: S0349
Type: TOOL
Platforms: Linux, macOS, Windows

Version: 1.0

Techniques Used

DomainIDNameUse
EnterpriseT1003Credential DumpingLaZagne can perform credential dumping to obtain account and password information.[1]
EnterpriseT1081Credentials in FilesLaZagne can obtain credentials from browsers, chats, databases, mail, and WiFi.[1]

Groups

Groups that use this software:

APT3
APT33
Leafminer
MuddyWater
OilRig

References