code-scan starred BOF-ForeignLsass
2021-08-21 12:47:44 Author: github.com(查看原文) 阅读量:21 收藏

Latest commit

Files

Permalink

Failed to load latest commit information.

Type

Name

Latest commit message

Commit time

LSASS Dumping With Foreign Handles

You must be admin or system, blah blah blah.

This entire thing is predicated on another process having an open handle to LSASS, and you being able to open a handle to that process and duplicate their lsass' handle.

build with:

	x86_64-w64-mingw32-gcc -c foreign_lsass.c -o foreign_lsass.x64.o
	i686-w64-mingw32-gcc -c foreign_lsass.c -o foreign_lsass.x86.o

Sources: ngl please don't judge my old (and current) awful code

https://github.com/alfarom256/lsassdump

https://skelsec.medium.com/duping-av-with-handles-537ef985eb03

About

No description, website, or topics provided.

Resources

Readme


文章来源: https://github.com/alfarom256/BOF-ForeignLsass
如有侵权请联系:admin#unsafe.sh