lsass-dump

There are 8 repositories under lsass-dump topic.

  • ricardojoserf/NativeDump

    Dump lsass using only Native APIs by hand-crafting Minidump files (without MiniDumpWriteDump!!!)

    Language:C#4687465

  • ricardojoserf/TrickDump

    Dump lsass using only NTAPIs running 3 programs to create 3 JSON and 1 ZIP file... and generate the MiniDump later!

    Language:C#3541139

  • safedv/RustiveDump

    LSASS memory dumper using only NTAPIs, creating a minimal minidump, built in Rust with no_std and independent of the C runtime (CRT). It can be compiled as shellcode (PIC), supports XOR encryption, and remote file transmission.

    Language:Rust2891235

  • Offensive-Panda/LsassReflectDumping

    This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone is created, it utilizes MINIDUMP_CALLBACK_INFORMATION callbacks to generate a memory dump of the cloned process

    Language:C++1712025

  • coleak2021/hidedump

    Hidedump:a lsassdump tools that may bypass EDR

    Language:C36105

  • Offensive-Panda/D3MPSEC

    "D3MPSEC" is a memory dumping tool designed to extract memory dump from Lsass process using various techniques, including direct system calls, randomized procedures, and prototype name obfuscation. Its primary purpose is to bypass both static and dynamic analysis techniques commonly employed by security measures.

    Language:C++22106

  • mendax0110/lsassDumper

    dump lsass

    Language:C++1100

  • MitraLothbrok/RemoteProcessManipulationAndMemoryDump

    DLL injection, memory dump of process С++

    Language:C++0100