GitHub topics: lsass-dump
ricardojoserf/TrickDump
Dump lsass using only NTAPI functions creating 3 JSON and 1 ZIP file... and generate the MiniDump file later!
Language: C# - Size: 615 KB - Last synced at: about 12 hours ago - Pushed at: about 13 hours ago - Stars: 452 - Forks: 51
ricardojoserf/NativeDump
Dump lsass using only NTAPI functions by hand-crafting Minidump files (without MiniDumpWriteDump!!!)
Language: C# - Size: 319 KB - Last synced at: 4 days ago - Pushed at: 4 days ago - Stars: 588 - Forks: 87
safedv/RustiveDump
LSASS memory dumper using only NTAPIs, creating a minimal minidump. It can be compiled as shellcode (PIC), supports XOR encryption, and remote file transmission.
Language: Rust - Size: 82 KB - Last synced at: 11 days ago - Pushed at: 11 days ago - Stars: 332 - Forks: 43
Offensive-Panda/LsassReflectDumping
This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone is created, it utilizes MINIDUMP_CALLBACK_INFORMATION callbacks to generate a memory dump of the cloned process
Language: C++ - Size: 57.4 MB - Last synced at: 7 months ago - Pushed at: 7 months ago - Stars: 108 - Forks: 14
Offensive-Panda/D3MPSEC
"D3MPSEC" is a memory dumping tool designed to extract memory dump from Lsass process using various techniques, including direct system calls, randomized procedures, and prototype name obfuscation. Its primary purpose is to bypass both static and dynamic analysis techniques commonly employed by security measures.
Language: C++ - Size: 50.1 MB - Last synced at: about 1 year ago - Pushed at: about 1 year ago - Stars: 8 - Forks: 0