lsass-dump · GitHub Topics

ricardojoserf / NativeDump

Dump lsass using only NTAPI functions by hand-crafting Minidump files (without MiniDumpWriteDump!!!)

lsass lsass-dump redteam-tools 安全

C# 635

1 个月前

ricardojoserf / TrickDump

Dump lsass using only NTAPI functions creating 3 JSON and 1 ZIP file... and generate the MiniDump file later!

lsass lsass-dump mimikatz redteam-tools 安全

C# 488

1 个月前

safedv / RustiveDump

LSASS memory dumper using only NTAPIs, creating a minimal minidump. It can be compiled as shellcode (PIC), supports XOR encryption, and remote file transmission.

lsass-dump offensive-security redteam Rust

Rust 344

2 个月前

Offensive-Panda / LsassReflectDumping

This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone is created, it utilizes MINIDUMP_CALLBACK_INFORMATION callback...

callbacks fork lsass-dump mimikatz minidump

C++ 201

8 个月前

coleak2021 / hidedump

Hidedump:a lsassdump tools that may bypass EDR

C lsass-dump Windows bypass-av edr-bypass

C 51

1 年前

Offensive-Panda / D3MPSEC

"D3MPSEC" is a memory dumping tool designed to extract memory dump from Lsass process using various techniques, including direct system calls, randomized procedures, and prototype name obfuscation. It...

lsass-dump malware-development offensive-security syscalls

C++ 24

9 个月前

ErenCanOzmn / CredentialGuardBypass

By manipulating LSASS memory flags like UseLogonCredential and IsCredGuardEnabled, this repo demonstrates how Credential Guard can be bypassed—restoring cleartext credentials despite the protection ap...

active-directory active-directory-security Cybersecurity lsass lsass-dump Windows windows-security mimikatz 安全

C++ 8

22 天前