HandleKatz – PIC Lsass Dumper Using Cloned Handles
This tool was implemented as part of our Brucon2021 conference talk and demonstrates the usage of cloned handles to Lsass in order to create an obfuscated memory dump of the same. It compiles down...