Skip to content

module ~ standard

Jump to bottom
Benjamin DELPY edited this page Apr 24, 2014 · 7 revisions

This is the main module of mimikatz, it contains quick commands to operate with the tool.
For this particular one, no need to prefix command by the module name (but it works too ;)), eg: exit is the same as standard::exit.

Commands: exit, cls, answer, sleep, log, base64, version

exit

Quits mimikatz, after cleaning routines.

mimikatz # exit
Bye!

cls

Clears screen, by filling the console window with spaces.

mimikatz # cls

Remark: it does not work with remote execution tools like psexec, meterpreter or others.

answer

Gives the Answer to the Ultimate Question of Life, the Universe, and Everything.

mimikatz # answer
42.

sleep

Sleeps an amount of milliseconds (1000 ms by default).

Argument:

  • number - optional - the number of milliseconds to sleep (default is 1000)
mimikatz # sleep
Sleep : 1000 ms... End !

mimikatz # sleep 4200
Sleep : 4200 ms... End !

log

Logs all outputs to a file (mimikatz.log by default).

Arguments:

  • filename - optional - the file name for the log file
  • /stop - optional - stop the file logging
mimikatz # log
Using 'mimikatz.log' for logfile : OK

mimikatz # log other.log
Using 'other.log' for logfile : OK

mimikatz # log /stop
Using '(null)' for logfile : OK

base64

Switches from file writing on the disk, to Base64 output instead.

mimikatz # base64
isBase64Intercept was    : false
isBase64Intercept is now : true

mimikatz # kerberos::list /export

[00000000] - 17
   Start/End/MaxRenew: 24/04/2014 08:24:20 ; 24/04/2014 18:17:29 ; 01/05/2014 08:17:29
   Server Name       : krbtgt/CHOCOLATE.LOCAL @ CHOCOLATE.LOCAL
   Client Name       : Administrateur @ CHOCOLATE.LOCAL
   Flags 60a00000    : pre_authent ; renewable ; forwarded ; forwardable ;
====================
Base64 of file : 0-60a00000-Administrateur@krbtgt~CHOCOLATE.LOCAL-CHOCOLATE.LOCAL.kirbi
====================
GwYDVQQDExRDZXJ0ZXVyb3BlIFJvb3QgQ0EgMjAeFw0wNzAzMjcyMjAwMDBaFw0z
NzAzMjcyMzAwMDBaMFoxCzAJBgNVBAYTAkZSMRMwEQYDVQQKEwpDZXJ0ZXVyb3Bl
...
OMF3YGMtrQycPKqYskOj1EbcDdw2HzIuaLp8ZSFBl5aQZxTWpC/9IT9//CJ7KjVY
9Ubxkw7Z7eA6Jn9uLo+YuE/UmQ==
====================

   * Saved to file     : 0-60a00000-Administrateur@krbtgt~CHOCOLATE.LOCAL-CHOCOLATE.LOCAL.kirbi

Remark: Commands that want to write file on disk think they do (they indicate that files are saved to disk)

version

Displays versions of mimikatz and Windows

mimikatz # version

mimikatz 2.0 alpha (arch x86)
NT     -  Windows NT 6.1 build 7601 (arch x64)
Clone this wiki locally