Releases: Offensive-Panda/ShadowDumper
Releases · Offensive-Panda/ShadowDumper
LsassDumping
Version: v1.0
Compatibility: Windows (x64) [tested with x64 build] on Windows 10 Version 22H2 (OS build 19045.5073) with major 10.0
(Note: You may face issues on latest releases in some methods, this can be due to version of mimikatz)
What's Inside:
ShadowDumper.exe: The main executable for dumping lsass memory. (x64 build)
Key Features:
Unhooked Injection (Modified Mimikatz Binary)
Unhooked Injection (Direct Syscalls with MDWD)
Simple MiniDumpWriteDump API
MINIDUMP_CALLBACK_INFORMATION Callbacks
Process Forking Technique
Direct Syscalls with MiniDumpWriteDump
Native Dump with Direct syscalls (Offline Parsing)