Which tools can be used to read the SAM database online, and what privilege level is required?

Common online tools include mimikatz (using `privilege::debug`, `token::elevate`, `lsadump::sam`), pwdump7, and PowerShell scripts like Invoke-PowerDump. All require administrator privileges, and some may fail on Windows 7 (e.g., pwdump7 and Cain). For switching from admin to system privileges, refer to the related article Penetration Techniques - Switching from Admin Privileges to System Privileges (link placeholder for the referenced previous article). These methods are detailed in Penetration Techniques - Obtaining Local User Hashes via SAM Database.