Talk With an Expert

Mimikatz Overview, Defenses and Detection

Mimikatz Overview, Defenses and Detection (PDF, 4.22MB)Published: 29 Feb, 2016
Created by
James Mulder

Mimikatz has become an extremely effective attack tool against Windows clients, allowing bad actors to retrieve cleartext passwords, as well as password hashes from memory. This paper will begin with an overview of Mimikatz's capabilities and payloadvectors. Several methods to mitigate the risk posed by Mimikatz will follow, and the paper will conclude with methods that may be used to detect the presence of Mimikatz.