trainr3kt/MiniDump

C# Lsass parser

Minidump

C# implementation of mimikatz/pypykatz minidump functionality to get credentials from LSASS using minidumpwritedump and parse the results in memory.

Usage

execute-assembly minidump.exe 

Supported Credentials

• Lsa
• Msv
• Kerberos
• WDigest
• SSP
• TsPkg
• Credman
• Dpapi
• CloudAP

Todo

• LiveSSP
• NT5 Support
• x86 Support

Known Bugs

• Not finding all logon sessions

Acknowledgements

Modified version of Minidump is based on the following projects and the work by the creators

• MiniDump by Cube0x0
• pypykatz by skelsec
• mimikatz by gentilkiwi
• sharpkatz by b4rtik