PyHook is an offensive API hooking tool written in python designed to catch various credentials within the API call.
This tool can be used during internal penetration testing to dump Windows credentials from an already-compromised host. It allows one to dump SYSTEM, SECURITY and SAM hives and once copied to the attacker machines provides option to delete these files to clear the trace.
Extract credentials from lsass remotely.
This library uses impacket project to remotely read necessary bytes in lsass dump and pypykatz to extract credentials.
A tool to spray love around the world.
Mimikatz implementation in pure Python
Credsleaker allows an attacker to craft a highly convincing credentials prompt using Windows Security, validate it against the DC and in turn leak it via an HTTP request.