Skip to content
›_Secrets Dump
SAM · SECURITY · SYSTEM · NTDS.dit

Dump Windows credentials, in your browser.

A faithful, fully client-side reimplementation of impacket's offline secretsdump.py — boot key, SAM NT/LM hashes, LSA secrets, cached domain logons (DCC2) and NTDS.dit domain hashes. Written in Rust, compiled to WebAssembly. Nothing ever leaves the page.

For education and authorized testing only. Only use hives you are permitted to analyze (your own lab, a sanctioned engagement, or a CTF).
›_

Drop your hives here

Drag in SYSTEM, SAM, SECURITY and/or NTDS.dit— or click to choose. They're auto-detected; order and filenames don't matter.

Everything runs in your browser via WebAssembly. No file or hash ever leaves this page.