lsass

There are 1 repository under lsass topic.

fortra / nanodump
The swiss army knife of LSASS dumping
bof cna cobalt-strike lsass
Language:C 1642
spraykatz
aas-n / spraykatz
Credentials gathering tool automating remote procdump and parse of lsass process.
procdump pypykatz lsass mimikatz credentials minidump spray love
Language:Python 743
CCob / MirrorDump
Another LSASS dumping tool that uses a dynamically compiled LSA plugin to grab an lsass handle and API hooking for capturing the dump in memory
lsass dumping credentials
Language:C# 258
kindtime / nosferatu
Windows NTLM Authentication Backdoor
windows backdoor lsass ntlm
Language:C++ 234
ricardojoserf / NativeDump
Dump lsass using only Native APIs by hand-crafting Minidump files (without MinidumpWriteDump!)
lsass lsass-dump mimikatz redteam-tools security-tools
Language:C# 232
Hagrid29 / DuplicateDump
Dumping LSASS with a duplicated handle from custom LSA plugin
credentail dumping lsass redteam
Language:C# 191
TheKingOfDuck / hashdump
Dumping Windows Local Credentials Tools/Tricks
hashdump lsass windows-local-credentials mercury mercury-dumping
Language:PowerShell 65
jbaines-r7 / dellicious
Enabled / Disable LSA Protection via BYOVD
exploit poc lsass windows
Language:C++ 60
cl4ym0re / sysMiniDumpWD
A lsass dump tool using MiniDumpWriteDump & syscall(NtOpenProcess) technique. only tested on windows 11 with defender enabled:-)
dump lsass redteam evasion pentest
Language:C 13
Retr0-code / hash-dumper
Windows NTLM hash dump utility written in C language, that supports Windows and Linux. Hashes can be dumped in realtime or from already saved SAM and SYSTEM hives.
c hash-dump hashdump linux ntlm ntlmv2 registry registry-hive sam samdump windows windows-10 lsa lsass dump-hashes dumper linux-app nt-hash system
Language:C 11
lassehauballe / Shellcode-Minidumpwritedump
Shellcode for creating a minidump file of the lsass.exe process.
exploit lsass security shellcode windows
Language:Python 9
jkerai1 / WindowsHardeningScripts
Windows Hardening Powershell Scripts
gpo intune lsa lsass ppl runasppl basicauthentication hardening powershell winrm
Language:PowerShell 7
keowu / WinHandKill
A plugin for x64dbg that allows you to hook the Local Security Authority Subsystem Service process to extract all possible TLS(On handshake, Import, Export or Generate) keys from the operating system using the SeDebugPrivilege escalation to make malware analysis faster and easier.
hooking lsass malware-analysis maninthemiddleattack reverse-engineering ssl x64dbg-plugin
Language:CMake 7
saif-mahmud / Crypto-Lab
CSE 4118 Cryptography and Security Lab
aes md5 length-extension caesar-cipher pycrypto sha256 rsa hash-collision buffer-overflow sql-injection arp-spoofing csrf xss-vulnerability port-scanning lsass smb pentesting
Language:C++ 5
dvs17 / mimicom
Dump lsass with windows client and extract creds with pypykatz
creddump password pypykatz mimikatz lsass
Language:Python 4
ricardojoserf / lsass-dumper
Dump lsass.exe generating a file with the hostname and date in txt format using C++.
lsass dump-lsass mimikatz
Language:C++ 4
FOGSEC / SafetyKatz
SafetyKatz is a combination of slightly modified version of @gentilkiwi's Mimikatz project and @subtee's .NET PE Loader
pe portable executable mimikatz dotnet lsass visual studio visual-studio privesc privilege-escalation privilege-escalation-exploits privilege-elevation hunting c-sharp cobalt-strike cobalt strike byol
Language:C# 3
k4sth4 / lsass-dump
Dump Hashes From lsass
dumping extract-passwords hash-dump hashdump lsass procdump
3
LeakGuard
xiosec / LeakGuard
LeakGuard is a project to prevent the use of leaked passwords.
active-directory hardening ldap leak lsa lsass security windows windows-internals leakguard
Language:Go 3
zodi4cx / OpenSesame
A bootkit to bypass Windows login (WIP)
bootkit uefi windows lsass
Language:Rust 3
mazyaar / lsass_memory
Adversaries commonly abuse the Local Security Authority Subsystem Service (LSASS) to dump credentials for privilege escalation, data theft, and lateral movement. The process is a fruitful target for adversaries because of the sheer amount of sensitive information it stores in memory.
blueteam cyberred forensics lsass memorydump readteam windows security

lsass

fortra / nanodump

aas-n / spraykatz

CCob / MirrorDump

kindtime / nosferatu

ricardojoserf / NativeDump

Hagrid29 / DuplicateDump

TheKingOfDuck / hashdump

jbaines-r7 / dellicious

cl4ym0re / sysMiniDumpWD

Retr0-code / hash-dumper

lassehauballe / Shellcode-Minidumpwritedump

jkerai1 / WindowsHardeningScripts

keowu / WinHandKill

saif-mahmud / Crypto-Lab

dvs17 / mimicom

ricardojoserf / lsass-dumper

FOGSEC / SafetyKatz

k4sth4 / lsass-dump

xiosec / LeakGuard

zodi4cx / OpenSesame

mazyaar / lsass_memory