And HUGE kudos to @agsolino, @byt3bl33d3r and @SkelSec for their awesome work, I'm standing on their shoulders
-
-
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
-
-
Blog post that explains the thought processhttps://twitter.com/HackAndDo/status/1213146920362876928 …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
-
-
Won't work with WDCG enabled, right ? Have you tried with the LSA process running as a PPL ?
-
No it won't work, and the tool handles it (Credential Guard or PPL) saying "Error: lsass is protected"
Kraj razgovora
Novi razgovor -
-
-
if procdump is not necessary, why does the output still shows Deleting procdump? is it different than spraykatz?
-
CME module can now also be used without procdump, which is now its default behavior
https://github.com/Hackndo/lsassy/commit/8b4033802510cf4e580327e3b97c93e0be9d002d#diff-cf99358c88d1fa2d6ac76fc8383d4961R51 …
Kraj razgovora
Novi razgovor -
-
-
Awesome work,thanks for the work , i also really enjoy your explanation on your blog about the tool.Keep going
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
-
-
Awesome! Thanks for sharing
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
-
-
Thanks for sharing! Would be a good idea for
@lydericlefebvre to implement this technique in#Spraykatz too, the more tools the better :-) - Još 1 odgovor
Novi razgovor -
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

Remotely dump