Ways of extracting credentials from LSASS.exe ?

sil3nt_n1njasil3nt_n1nja OSCP, OSCETurkeyMember Posts: 9 ■■■□□□□□□□
Do you know any other ways using one can extract credentials from Windows' LSASS?

I am aware of:
  1. Load and use mimikatz on a compromised machine
  2. Use a c# implementation of mimikatz (to evade A/V)
  3. Task Manager, right click on the lsass.exe process and "Create **** file". Then use mimikatz on your own machine against the created **** file
  4. Use other tools to **** lsass process memory and again use mimikatz in your own machine

Comments

Sign In or Register to comment.