Nanodump Alternatives

Similar projects and alternatives to nanodump

CS-Situational-Awareness-BOF

2 1,130 7.0 C nanodump VS CS-Situational-Awareness-BOF

Situational Awareness commands implemented using Beacon Object Files
Dumpert

3 1,380 1.8 C nanodump VS Dumpert

LSASS memory dumper using direct system calls and API unhooking.
InfluxDB

www.influxdata.com featured

Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
Awesome-Red-Teaming

8 6,524 0.0 nanodump VS Awesome-Red-Teaming

List of Awesome Red Teaming Resources
CrossC2

1 2,136 3.9 C nanodump VS CrossC2

generate CobaltStrike's cross-platform payload
Awesome-CobaltStrike

3 3,821 6.4 nanodump VS Awesome-CobaltStrike

List of Awesome CobaltStrike Resources
amd-ryzen-master-driver-v17-exploit

1 130 10.0 C nanodump VS amd-ryzen-master-driver-v17-exploit

Cobalt Strike (CS) Beacon Object File (BOF) for kernel exploitation using AMD's Ryzen Master Driver (version 17).
WindowSpy

2 251 5.3 C nanodump VS WindowSpy

WindowSpy is a Cobalt Strike Beacon Object File meant for automated and targeted user surveillance.
SaaSHub

www.saashub.com featured

SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a better nanodump alternative or higher similarity.

Suggest an alternative to nanodump

nanodump reviews and mentions

Posts with mentions or reviews of nanodump. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2021-12-19.

nanodump: The swiss army knife of LSASS dumping now supports the PPLMedic exploit meaning you can dump LSASS on an up-to-date system with PPL enabled
1 project | /r/blueteamsec | 30 Apr 2023
add --duplicate-local technique · this allows nanodump to open a handle to LSASS with PROCESS_QUERY_LIMITED_INFORMATION and elevate the handle later this way, we might bypass several detections
1 project | /r/blueteamsec | 2 Sep 2022
Ways to Dump LSASS
1 project | /r/redteamsec | 20 Aug 2022

Excellent writeup. Check out this tool as well, https://github.com/helpsystems/nanodump, it supports cloning existing handles to lsass which is a fun technique for dumping lsass more stealthily. I've seen it work against some modern edrs.
Alan c2 post-exploitation framework v5.0 - All you can in-memory edition
2 projects | /r/redteamsec | 19 Dec 2021

The video shows the execution of the `run` command. In the first part, the nanodump (https://github.com/helpsystems/nanodump) utility is executed in an external process (you can see in the video that at a given point the raserver.exe process is spawned).
GitHub - helpsystems/nanodump: Dumping LSASS has never been so stealthy
1 project | /r/WindowsSecurity | 11 Nov 2021
nanodump - Dumping LSASS using syscalls
1 project | /r/purpleteamsec | 11 Nov 2021
A note from our sponsor - InfluxDB
www.influxdata.com | 10 May 2024

Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality. Learn more →

Stats

Basic nanodump repo stats

Mentions

Stars

1,632

Activity

4.9

Last Commit

10 days ago

fortra/nanodump is an open source project licensed under Apache License 2.0 which is an OSI approved license.

The primary programming language of nanodump is C.

Popular Comparisons