Exfiltrate NTLM Hash

Exfiltrate NTLM Hash
Download Copy
Title: Exfiltrate NTLM Hash
Author: luu176

A payload used to exfiltrate the NTLM hash on a Windows machine.

Exfiltration is an involuntary backup. It's a technique for obtaining data from a network. Once obtained, the data may be removed using a number of methods. These may include traversing the network to a command and control server, such as Cloud C². The content is typically encrypted or obfuscated. In the case of physical access, a bring-your-own-network element may be included to evade detection. See all exfiltration payloads.

This payload is for the USB Rubber Ducky — a "flash drive" that types keystroke injection payloads into unsuspecting computers at incredible speeds. It's no wonder this little quacker has made appearances on Mr. Robot, FBI, Blacklist, National Geography and more!

Submit your own payload, or browse more featured USB Rubber Ducky Payloads.

 

 

Related Payloads

Execute commands as NT AUTHORITY\SYSTEM with TrustedInstaller privileges
Execute commands as NT AUTHORITY\SYSTEM with TrustedInstaller privileges
This payload launches a new cmd.exe process with elevated privileges under TrustedInstaller, by setting the TrustedInsta
Read More
Exfiltrate NTLM Hash To SD
Exfiltrate NTLM Hash To SD
This payload exfiltrates NTLM hash files to the Rubber Ducky's SD card for further analysis.
Read More
Same File Name Prank
Same File Name Prank
This payload renames files and folders to all have a similar name.
Read More