-
Hello,
After correctly dumping the process:
![image](https://github.com/user-attachments/assets/fc9578b2-e83d-46bd-a007-13266031816f)
The dump is not parsable:
![image](https://github.com/user-a…
-
Hi,
I came across a possible bug in one of your rules.
https://github.com/SigmaHQ/sigma/blob/master/rules/windows/builtin/security/win_security_dcsync.yml#L29
The rule didn't match this event…
-
How is this MImikatz shellcode generated?
-
-
Just thought of this whilst going though "AT is the New Black", but do we actually have any decent documentation on Mimikatz and WCE? If not it would be good to add in some good documentation on these…
-
Seems this program uses or calls mimikatz and that is a known hacking tool. Why did it do that?
-
Do you have any .cna file of mimikatz so I can update the version from cobalt strike with this one?
-
after dumping the whole memory with winpmem xx.raw
and then extract lsass.exe using volatility3 we couldn't get access to the lsass using mimikatz
error always showing opening memory in mimikatz. …
-
大佬能详细说说该怎么更新Mimikatz版本么?
另外发现个和你这个差不多的:
https://github.com/GhostPack/SafetyKatz
大佬也指点一下他这个具体怎么更新Mimikatz版本么?
-
Hi,
Getting mentioned error with windows defender turned off and running as admin.
~~~
mimikatz # privilege::debug
Privilege '20' OK
mimikatz # sekurlsa::pth /user:normaluser /domain:LAPTOP…