b4rtik/SharpMiniDump b4rtik/SharpMiniDump

  • Stars
    star
    253
  • Rank 160,014 (Top 4 %)
  • Language
    C#
  • License
    BSD 3-Clause "New...
  • Created about 5 years ago
  • Updated almost 2 years ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
b4rtik/SharpMiniDump
github

b4rtik

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Create a minidump of the LSASS process from memory

SharpMiniDump

Create a minidump of the LSASS process from memory (Windows 10 - Windows Server 2016). The entire process uses: dynamic API calls, direct syscall and Native API unhooking to evade the AV / EDR detection.

SharpMiniDump is a rough port of this project Dumpert by @Cn33liz and you will find the detail in this post, so BIG credits to him.

Other credits go to @cobbr_io and @TheRealWover for their work on SharpSploit (Execution / DynamicInvoke)

More Repositories

1

SharpKatz

Porting of mimikatz sekurlsa::logonpasswords, sekurlsa::ekeys and lsadump::dcsync commands
C#
957
star
2

metasploit-execute-assembly

Custom Metasploit post module to executing a .NET Assembly from Meterpreter session
C++
341
star
3

RedPeanut

RedPeanut is a small RAT developed in .Net Core 2 and its agent in .Net 3.5 / 4.0.
C#
332
star
4

ATPMiniDump

Evading WinDefender ATP credential-theft
C
251
star
5

SharpAdidnsdump

c# implementation of Active Directory Integrated DNS dumping (authenticated user)
C#
196
star
6

HiddenPowerShellDll

Batchfile
93
star
7

SharpLoadImage

Hide .Net assembly into png images
C#
35
star
8

DonutSupport

RedPeanut Support Classes
C#
8
star
9

PowerTheShell

PowerShell
6
star