Dumping Passwords

mimikatz

You can dump passwords (or NTML hash with Windows >=8.1) with mimikatz. Meterpreter should help with that iirc.

Impacket secretsdump

Performs various techniques to dump hashes from the remote machine without executing any agent there.

impacket/secretsdump.py at master · SecureAuthCorp/impacketGitHub

python3 secretsdump.py FULLY_QUALIFIED_DOMAIN_NAME/USERNAME:PASSWORD@IP_ADDRESS