Skip to content

Releases: Offensive-Panda/ShadowDumper

LsassDumping

10 Nov 17:44
cce4c77
Compare
Choose a tag to compare

Version: v1.0
Compatibility: Windows (x64) [tested with x64 build] on Windows 10 Version 22H2 (OS build 19045.5073) with major 10.0
(Note: You may face issues on latest releases in some methods, this can be due to version of mimikatz)

What's Inside:
ShadowDumper.exe: The main executable for dumping lsass memory. (x64 build)

Key Features:
Unhooked Injection (Modified Mimikatz Binary)
Unhooked Injection (Direct Syscalls with MDWD)
Simple MiniDumpWriteDump API
MINIDUMP_CALLBACK_INFORMATION Callbacks
Process Forking Technique
Direct Syscalls with MiniDumpWriteDump
Native Dump with Direct syscalls (Offline Parsing)