# Post-Exploitation

- [Extracting Credentials](/cheatsheet/internalpentest/active-directory/post-exploitation/extracting-credentials.md)
- [Retrieve Windows passwords](/cheatsheet/internalpentest/active-directory/post-exploitation/extracting-credentials/windows-clear-text-credentials.md): This page deals with retrieving windows clear text credentials from memory and WDigest.
- [Retrieve Windows hashes](/cheatsheet/internalpentest/active-directory/post-exploitation/extracting-credentials/retrieve-windows-hashes.md): This page deals with retrieving windows hashes (NTLM, NTLMv1/v2, MSCASHv1/v2).
- [Maintening Access](/cheatsheet/internalpentest/active-directory/post-exploitation/maintening-access.md)
- [Adding Local Administrator](/cheatsheet/internalpentest/active-directory/post-exploitation/maintening-access/adding-local-administrator.md): Adding a local administrator on a machine is a very effective way to maintain access to a machine.
- [Lateral Movement](/cheatsheet/internalpentest/active-directory/post-exploitation/lateral-movement.md)
- [SMB protocol](/cheatsheet/internalpentest/active-directory/post-exploitation/lateral-movement/smb-protocol.md): This page deals with lateral movement using smb protocol.