Skip to content

LsassDumping

Latest
Compare
Choose a tag to compare
@Offensive-Panda Offensive-Panda released this 10 Nov 17:44
· 21 commits to main since this release
cce4c77

Version: v1.0
Compatibility: Windows (x64) [tested with x64 build] on Windows 10 Version 22H2 (OS build 19045.5073) with major 10.0
(Note: You may face issues on latest releases in some methods, this can be due to version of mimikatz)

What's Inside:
ShadowDumper.exe: The main executable for dumping lsass memory. (x64 build)

Key Features:
Unhooked Injection (Modified Mimikatz Binary)
Unhooked Injection (Direct Syscalls with MDWD)
Simple MiniDumpWriteDump API
MINIDUMP_CALLBACK_INFORMATION Callbacks
Process Forking Technique
Direct Syscalls with MiniDumpWriteDump
Native Dump with Direct syscalls (Offline Parsing)