all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Dump LSASS.exe Process Memory with Nanodump BOF - Bypasses Windows Defender

Add to bookmarks
Aug. 19, 2023, 12:33 p.m. | /u/cybermepls

cybersecurity www.reddit.com

[In this video posted on the Gemini Cyber Security Youtube channel](https://youtu.be/jwETspKR6JU), it provides an introduction to LSASS.exe process memory dumping in order to understand why this technique is critical and essential for an adversary when it comes to the cyber kill chain - lateral movement life cycle.

The video then provides some examples on how we can dump the LSASS.exe process memory, which all of the techniques were detected and prevented by Microsoft Windows Defender.

Following which, a short introduction …

beacon bof cybersecurity defender demonstration files introduction loader lsass memory microsoft microsoft windows object process techniques tool trustedsec video windows windows defender

Visit resource

More from www.reddit.com / cybersecurity

Black Basta ransomware group is imperiling critical infrastructure, groups warn 7 hours ago | www.reddit.com
basta black basta black basta ransomware critical +5
Around 1000 exploitable cybersecurity vulnerabilities that MITRE & NIST ‘might’ have missed but China or … 10 hours ago | www.reddit.com
china cybersecurity cybersecurity vulnerabilities mitre +3
Does anyone perform model-assisted threat hunting? 12 hours ago | www.reddit.com
advanced analysis capabilities coworkers +12
SEC Adds New Incident Response Rules for Financial Sector 19 hours ago | www.reddit.com
cybersecurity financial financial sector incident +5
Do you automate? 21 hours ago | www.reddit.com
automate automation bash can +15
Is the Microsoft Security Operations Analyst Associate SC-200 Certification Worth Pursuing? 23 hours ago | www.reddit.com
analyst certification certs cybersecurity +12
Picking your sources of IoC 1 day, 13 hours ago | www.reddit.com
can cybersecurity go to investigation +7
Are password requirements useless? 1 day, 14 hours ago | www.reddit.com
bitwarden brute can cybersecurity +13
Upcoming conferences for 2024? 1 day, 14 hours ago | www.reddit.com
conference conferences cybersecurity employer +11

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada
View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA
View on infosec-jobs.com

Technical Support Specialist (Cyber Security)

@ Sigma Software | Warsaw, Poland
View on infosec-jobs.com

OT Security Specialist

@ Adani Group | AHMEDABAD, GUJARAT, India
View on infosec-jobs.com

FS-EGRC-Manager-Cloud Security

@ EY | Bengaluru, KA, IN, 560048
View on infosec-jobs.com