Home
Attack
Dataset
Contact Us
Attack
2024 01
T1-24–01–S–N–CL
T2-24–01–S–N–CL
T3-24–01–S–N–CL
T4-24–01–S–E–M
T5-24–01–S–E–LM
T6-24–01–S–E–FH
T7-24–01–M–NE–CLM
T8-24–01–M–NE–CFHL
T9-24–01–M–NE–CLM
2024 02
T1-24–02–S–N–CIKM
T2-24–02–S–N–CL
T3-24–02–S–N–CL
T4-24-02-S-E-M
T5-24-02-S-E-DL
T6-24-02-S-E-DEGN
T7-24-02-M-NE-CDEGLN
T8-24-02-M-NE-CDL
T9-24-02-M-NE-CLH
2025
T1-25–01–S–N–CD
T2-25–01–S–N–CL
T3-25–01–S–N–CD
T4-25-01-S-E-FH
T5-25-01-S-E-CL
T6-25-01-S-E-CL
T7-25-01-M-NE-CDN
T8-25-01-M-NE-CLFH
T9-25-01-M-NE-CDFH
Dataset
Contact Us
T4-25–01–S–E–FH
LaZagne (post-exploitation password recovery tool)
LaZagne is an open-source credential recovery tool. Its main feature is the fast extraction of plaintext passwords and hashes passwords stored by common applications and operating systems, including web browsers (Chrome, Firefox, Edge, etc.), eamil clients, chat programs, database tools, Wi-Fi configurations, and system components such as Windows credentials and Local Security Authority(LSA) secrets.
OS
IP
Software
Log collection
time
Program
runtime
Attacker
-
-
LaZagne
30 sec
60 sec
Victim
Windows 10
10.0.2.15
-
Installation
python3 -m venv venv
.\venv\Scripts\Activate.ps1
pip install -r requirements.txt
Usage
python3 run.py
MITRE ATT&CK Framework
Attack Tactic
Reconnaissance
Resource Development
Initial Access
Execution
Persistence
Privilege Escalation
Defense Evasion
Credential
Discovery
Lateral Movement
Collection
Command and Control
Exfiltration
Impact
Logs
./log/2025_01_T4_{time}.evtx # YYmmdd_HHMMSS
References
[1]
MITRE [LaZagne]
[2]
Github - AlessandroZ
※ Click on the attack name to see a description and scenario for the attack
2025
T1-25–01–S–N–CD
T2-25–01–S–N–CL
T3-25–01–S–N–CD
T4-25–01–S–E–FH
T5-25–01–S–E–CL
T6-25–01–S–E–CL
T7-25–01–M–NE–CDN
T8-25–01–M–NE–CLFH
T9-25–01–M–NE–CDFH
Copyright(C) 2024, KAIST Cyber Security Reserch Center. All Rights Reserved.
