-
Hello,
Wondering what the mention of this actually means under "[LSASS Processing](https://github.com/skelsec/pypykatz?tab=readme-ov-file#lsass-processing)";
"pcileech - can dump secrets DIRECTLY …
-
See: https://github.com/SigmaHQ/sigma/blob/b4cb047ae720b37b11f8506de7965dc29d5920be/rules/windows/registry/registry_set/registry_set_outlook_registry_todaypage.yml
detection:
selection1:
Ta…
-
This week I had three seperate instances where I got this error message trying to parse a lsass dump:
```
INFO:pypykatz:Parsing file lsass1.dmp
DEBUG:pypykatz:Buildnumber: 14393
DEBUG:pypykatz:u…
-
I have a question, can this tool bypass ppl when dumping lsass?
-
Hello. Try to extract dump of lsass.exe from full RAM dump Windows 2016/2019 Server.
Full RAM dump maded by winpmem.
`winpmem_mini_x64_rc2.exe phizmem.raw`
Search a PID i need:
`vol -f phiz…
-
* **Contributor Name:** 59e5aaf4
* **Application/Executable:** pcsnp.exe
* SHA256 caa69ac524061e231b341b92995a9cbc2b4db81035cbef724695a175e9e6ae3f
* **WTF Behavior Description:** Has a subprocess …
-
Hi,
I am trying to use DInvoke to execute MiniDumpWriteDump for dumping notepad process.
I have tried with HIGH and also system integrity, with SeDebugPrivilege enabled.
I always have same erro…
-
Hello, I am having issues getting log files from my analysis tasks. It doesn't seem to matter what type of file I use there is never any logged behaviour though I can see on my virtual machine that th…
-
__Provider: VirtualBox__
I have tried to redo the LeHack 2024 workshop. And the __MSOL step__ is failing:
```bash
❯ nxc winrm ips.txt -u 'lapsus' -p 'hC78*K,Zv+z123' --laps
WINRM 192.168…
-
Initial issue for addition, notes and updates