GitHub - coleak2021/hidedump: Hidedump:a lsassdump tools that may bypass EDR

Introduction

Hidedump:a lsassdump tools that may bypass EDR
achieve：hook WriteAll+duplication

Use

hidedump.exe [opt] filename
opt==1:save the Encrypted dumpfile
opt==2:Decrypt the dumpfile and save the decrypted file as sec.dump

example
hidedump.exe 1 tmp.bin
hidedump.exe 2 tmp.bin

More information

https://mp.weixin.qq.com/s?__biz=MzkyNTUyNDMyOA==&mid=2247487133&idx=1&sn=814bb99d366f7db1d19c6ab8d72731cb&chksm=c1c4069af6b38f8c767ee8b499680de41ab2ce407eb1283b360b61960ba3c30b263c246e91ec#rd

tip

The project is no longer update for bypass, only to provide you with ideas

Name		Name	Last commit message	Last commit date
Latest commit History 3 Commits
1.png		1.png
README.md		README.md
handle.h		handle.h
hidedump.cpp		hidedump.cpp
hidedump.sln		hidedump.sln
hidedump.vcxproj		hidedump.vcxproj
hidedump.vcxproj.filters		hidedump.vcxproj.filters
hidedump.vcxproj.user		hidedump.vcxproj.user
utils.cpp		utils.cpp
utils.h		utils.h

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

About

Releases

Packages

Languages

coleak2021/hidedump

Folders and files

Latest commit

History

Repository files navigation

About

Topics

Resources

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages