🚨 Credential Dumping: Phishing Windows Credentials 🔥 Telegram: t.me/hackinarticles ✴ Twitter: x.com/hackinarticles Phishing attacks are commonly used to capture Windows credentials by tricking users into entering their login details on malicious prompts or fake login screens. Once obtained, attackers can reuse these credentials to gain unauthorized access and move laterally inside the network. ⚡ Key Tools Used for Windows Credential Phishing 🛠️ Metasploit Framework 🎣 phish_windows_credentials 🖥️ FakeLogonScreen 🔐 SharpLocker ⚔️ PowerShell Empire 📦 Collection/prompt 🍞 Collection/toasted 💉 Koadic 📩 Password_box 📜 PowerShell 🧪 Invoke-CredentialsPhish.ps1 🔑 Invoke-LoginPrompt.ps1 🎭 Lockphish 📖 Article: hackingarticles.in/credentia… #CyberSecurity #EthicalHacking #RedTeam #Pentesting #CredentialDumping #Phishing #InfoSec

Just in case you want to run SharpLocker from your Digispark on another keyboard Layout than US - Check this out: raw.githubusercontent.com/Lu…

Tested NOT working SharpHound SharpLocker

... faster (the covert channel has more bandwidth). That's why the long sharplocker payload requires only a few seconds to trigger. Shortcoming: Adding more templates would require LOGITacker re-compilation. Thus it ended up as small demo

Additional info: One of the last things I did, was to extend LOGITacker's covert channel by a Sharplocker attack (not documented). Demo is here:

SharpLocker helps get current user credentials by popping a fake Windows lock screen, all output is sent to Console which works perfect for Cobalt Strike. github.com/Pickfordmatt/Shar…

Transferring the ~11000 character Sharplocker payload through the deployed covert channel takes about 3 seconds in Lightspeed mode.

These projects look very similar... I hope it is just a coincidence... 😲 * hxxps://github.com/bitsadmin/fakelogonscreen * hxxps://github.com/Pickfordmatt/SharpLocker

My fork of 'SharpLocker' is here (see README for limitations): github.com/mame82/SharpLocke… Credz for original SharpLocker version to @Mattspickford Thx to @keld_norman for bringing it to my attention

LOGITacker not only runs a wireless remote shell on an air gapped Win 10 box, with a #USBSamuraiPro (USB cable with implant) connected ... it now incorporates my version of SharpLocker fake LockScreen to steal passwords via its covert channel. Demo:

After @keld_norman's nice demo I totally reworked @Mattspickford SharpLocker: - 11KB PowerShell payload - contains encoded NET assembly - tries to use correct LockScreen background and user picture - returns result to PS as String Comparison with real LockScreen:

Size reduction of fake lock screen SharpLocker by @Mattspickford lead to some visual changes (old: Matt, new: XMG-U705).

Yep - that is the magic key combination that normally can't be hooked or blocked .. but if I just lock your screen after running the SharpLocker you would most likely just think that you mistyped your password and try again (2 time you would type in my program instead)

No, but github.com/BlacksunLabs/Lock… looks much more pro and finished compared to the SharpLocker code

A customized SharpLocker / fake login screen fools even the best sysadmin - did you lock your screen when you went for coffee ? ( github.com/Pickfordmatt/Shar… ) #Redteam #Awareness #SharpLocker #Fakelockscreen

Nice work @Mattspickford :) I made a little video - the two other usb sticks are for setting My Little Pony as the windows background image and a custom one that is.. a little harder to explain ;) #FakeWindowsLockScreen #SharpLocker github.com/Pickfordmatt/Shar…

Need user creds? @matthewpickford just pushed his Windows SharpLocker for RedTeams to @github. Github: lnkd.in/gjb4drf #redteam #cobaltstrike #windows #hacking

boh starred Pickfordmatt/SharpLocker on Github bit.ly/2KvtPHN