v0.5.0

Go-secdump can now dump the registry secrets without changing any DACLs thanks to the SeBackupPrivilege trick discovered by Julien Egloff.
The version of go-smb has been updated to support more flexibility in opening handles to registry keys.

v0.4.0

Added calculation of Kerberos AES Keys for the machine account password.
Could be useful when NTLM auth is disabled

v0.3.0

Added support for Kerberos authentication.
It is now possible to authenticate with Kerberos using:

• username + password
• username + NT Hash
• username + AES Key
• cached credentials on Linux (TGS or TGT in .ccache file)

v0.2.1

Added support to run individual dump operations instead of always dumping everything.
Added support for taking a disk backup of the DACLs before modifying them and manually restoring DACLs from backup using two new arguments --backup-dacl and --restore-dacl
Updated handling of how the dumped secrets are displayed to optionally write them to an output file instead of stdout.

v0.2.0

Updated version of go-smb library to add support for NTLM relaying and to establish connection via an upstream SOCKS5 proxy

v0.1.3

Fixed problems dumping NT hashes on certain systems where the decryption process was incorrect.
Fixed problem dumping certain large DCC2 caches by updating the SMB library to a newer version.