Cannot export certificate with private key?

Have you ever needed to export a certificate on a server that was imported without the option to export the private key ?

Well if the answer is yes then you know you will need to either re key the certificate or simply request a new one.

But i have found a little tool that allow you to export the certificate with the private key.

First go to this website and download Trunk.

Now you will need to run mimikatz with admin rights

Type in:

  1. privilege::debug
  2. crypto::patchcapi
  3. crypto::exportCertificates CERT_SYSTEM_STORE_LOCAL_MACHINE

This will export all the computer certificate at the same location that your mimikatz was runing.

PS: the password for the pfx is mimikatz

  1. No trackbacks yet.

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

%d bloggers like this: