Capturing Credentials

All Engagement Credentials can be managed from the Credentials tab.

Host Specific Credentials

Port Specific Credentials

Host Page - Credentials Section

Add Credentials
All fields are optional. Set the Host field to a specific host, for example web logins are typically tied to a web server. You can also attach credentials to the Engagement for domain wide credentials such as Active Directory NTLM hashes.

Import Creds
Import credentials by loading a file or copy & paste. The formats supported are:
- passwd
- .shadow
- username : password
- username : hash
- username : hash : hashtype

Export Creds
The Export Creds screen provides an listing of captured credentials in various formats. These are meant to be copy & pasted into a file for use by hashcat, crackMapExec, or other tools.
Credentials are available on all tiers.
Last modified 1yr ago