PenTest.WS Documentation
  • What is PenTest.WS?
    • Tier Comparison
  • Getting Started
    • Dashboard
    • Creating An Engagement
    • Main Window Layout
    • Engagement Console
    • Import Nmap & Masscan XML
    • Port Scan Templates
    • Adding Hosts Manually
    • Adding Ports to Hosts
    • Capturing Credentials
  • Hosts & Services
    • Host Page
    • Port Page
    • Global Service Notes
    • Service Command Library
    • Default Service Checklist
    • Scratchpad Editor
  • Views & Filtering
    • Boards
    • The Matrix
    • Subnetting
  • User Libraries
    • Shells Library
    • General Command Library
    • General Notes Library
    • Bookmark Library
  • Built-In Tools
    • Echo Up
    • CyberChef
    • Venom Builder
  • Search Capabilities
    • CVE DB
    • Exploit-DB
    • Nmap Scripts
    • Metasploit Modules
    • Keyword Search
  • Findings
    • Findings Admin
    • Findings Library
    • Engagement Findings
  • Clients & Reporting
    • Write-Ups
    • Clients Manager
    • Reporting Templates
    • Generating Deliverables
  • Collaboration
    • User Maintenance
    • Shared Engagements
    • Access Control List
  • Automation & Integration
    • API
    • SMTP
  • Authentication
    • Two-Factor Authentication
    • LDAP Authentication
  • Exporting & Importing
    • Export Account Items
    • Import Account Items
    • Export to CSV / JSON
  • Pro Tier
    • Admin Panel
    • Intranet Mode
    • Solo Mode
    • Large Engagement Support
Powered by GitBook
On this page
  • Engagement Credentials Tab
  • Host Credentials Section
  • Port Credentials Section
  • Adding Credentials Manually
  • Importing Credentials
  • Exporting Credentials
  • Tier Availability
  1. Getting Started

Capturing Credentials

PreviousAdding Ports to HostsNextHost Page

Last updated 2 years ago

Engagement Credentials Tab

All Engagement Credentials can be managed from the Credentials tab.

Host Credentials Section

Port Credentials Section

Adding Credentials Manually

From the Credentials Tab or Host Page, click the Add Creds button in the Credentials section:

All fields are optional. Set the Host field to a specific host, for example web logins are typically tied to a web server. You can also attach credentials to the Engagement for domain wide credentials such as Active Directory NTLM hashes.

Importing Credentials

From the Credentials Tab or Host Page, click the Import Creds button in the Credentials section.

Import credentials by loading a file or copy & paste. The formats supported are:

  • passwd

  • .shadow

  • username : password

  • username : hash

  • username : hash : hashtype

Exporting Credentials

The Export Creds screen provides an listing of captured credentials in various formats. These are meant to be copy & pasted into a file for use by hashcat, crackMapExec, or other tools.

Tier Availability

Credentials are available on all tiers.

Host Specific Credentials
Port Specific Credentials
Host Page - Credentials Section
Add Credentials
Import Creds
Export Creds