jfjallid/go-lsass external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

jfjallid/go-lsass

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/jfjallid/go-lsass)

Close

jfjallid / go-lsassView on GitHubMore

• External links
• Readme badge

Tool to aid in dumping LSASS process remotely

☆42Sep 23, 2025Updated 6 months ago

Alternatives and similar repositories for go-lsass

Users that are interested in go-lsass are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• Leo4j / PowerDACL

  View on GitHub
  A tool to abuse weak permissions of Active Directory Discretionary Access Control Lists (DACLs) and Access Control Entries (ACEs)
  ☆61Feb 4, 2026Updated last month
• lsecqt / SharpRedirect

  View on GitHub
  Simple C# Redirector
  ☆94Aug 31, 2025Updated 6 months ago
• jsecu / ModTask

  View on GitHub
  ☆53Sep 23, 2025Updated 6 months ago
• MWR-CyberSec / AD-CS-Forest-Exploiter

  View on GitHub
  Exploit AD CS misconfiguration allowing privilege escalation and persistence from any child domain to full forest compromise
  ☆129Dec 2, 2023Updated 2 years ago
• safedv / RustiveDump

  View on GitHub
  LSASS memory dumper using only NTAPIs, creating a minimal minidump. It can be compiled as shellcode (PIC), supports XOR encryption, and r…
  ☆385Apr 26, 2025Updated 11 months ago
• End-to-end encrypted cloud storage - Proton Drive • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
• Leo4j / PPLKiller

  View on GitHub
  Tool to bypass LSA Protection (aka Protected Process Light)
  ☆64Jan 2, 2025Updated last year
• decoder-it / ChgPass

  View on GitHub
  ☆136Feb 11, 2025Updated last year
• decoder-it / KrbRelayEx-RPC

  View on GitHub
  ☆200Mar 28, 2025Updated last year
• LuemmelSec / APEX

  View on GitHub
  Azure Post Exploitation Framework
  ☆245Oct 27, 2025Updated 5 months ago
• Leo4j / Invoke-SMBRemoting

  View on GitHub
  Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
  ☆182May 19, 2025Updated 10 months ago
• ricardojoserf / NativeBypassCredGuard

  View on GitHub
  Bypass Credential Guard by patching WDigest.dll using only NTAPI functions
  ☆268Apr 8, 2025Updated 11 months ago
• mertdas / SharpLateral

  View on GitHub
  Lateral Movement
  ☆126Nov 14, 2023Updated 2 years ago
• rasta-mouse / process-inject-kit

  View on GitHub
  Port of Cobalt Strike's Process Inject Kit
  ☆192Dec 1, 2024Updated last year
• jfjallid / go-cmloot

  View on GitHub
  A tool to enumerate and download files from the System Center Configuration Manager (SCCM) SMB share (SCCMContentLib)
  ☆17Jul 27, 2024Updated last year
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• 0xdea / blindsight

  View on GitHub
  Red teaming tool to dump LSASS memory, bypassing basic countermeasures.
  ☆247Mar 9, 2026Updated 2 weeks ago
• tijme / nimplant-beacon-position-independent-c-code

  View on GitHub
  A truly Position Independent Code (PIC) NimPlant C2 beacon written in C, without reflective loading.
  ☆67Feb 11, 2025Updated last year
• sakkis91 / SandboxPPL

  View on GitHub
  Golang PoC that sandboxes Defender (or other PPL) by setting its token integrity to Untrusted.
  ☆12May 28, 2025Updated 10 months ago
• 4ndr3w6 / Presentations

  View on GitHub
  ☆13Oct 21, 2023Updated 2 years ago
• jfjallid / go-secdump

  View on GitHub
  Tool to remotely dump secrets from the Windows registry
  ☆526Feb 27, 2026Updated last month
• logangoins / Stifle

  View on GitHub
  .NET Post-Exploitation Utility for Abusing Strong Explicit Certificate Mappings in ADCS
  ☆150Feb 10, 2025Updated last year
• Teach2Breach / snapinject_rs

  View on GitHub
  A remote process injection using process snapshotting based on https://gitlab.com/ORCA000/snaploader , in rust. It creates a sacrificial …
  ☆50Jan 25, 2025Updated last year
• logangoins / Krueger

  View on GitHub
  Proof of Concept (PoC) .NET tool for remotely killing EDR with WDAC
  ☆424Sep 29, 2025Updated 6 months ago
• RedSiege / SharpCollectionTemplate

  View on GitHub
  ☆14Sep 26, 2023Updated 2 years ago
• End-to-end encrypted cloud storage - Proton Drive • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
• almounah / go-buena-clr

  View on GitHub
  Good CLR Host with Native patchless AMSI Bypass
  ☆105Apr 18, 2025Updated 11 months ago
• BlWasp / rs-shell

  View on GitHub
  A dirty PoC for a reverse shell with cool features in Rust
  ☆186Nov 25, 2025Updated 4 months ago
• ASP4RUX / bypassEDR-AV

  View on GitHub
  ☆59Nov 13, 2024Updated last year
• nickvourd / SkyFall-Pack

  View on GitHub
  Your Skyfall Infrastructure Pack
  ☆91Jan 25, 2026Updated 2 months ago
• decoder-it / KrbRelayEx

  View on GitHub
  ☆384Oct 17, 2025Updated 5 months ago
• kafkaesqu3 / SharpStomp

  View on GitHub
  Timestomping module: overwrite file create/modify times in .NET (no pinvoke)
  ☆27Dec 13, 2021Updated 4 years ago
• NetSPI / silkwasm

  View on GitHub
  HTML Smuggling with Web Assembly
  ☆66Feb 20, 2024Updated 2 years ago
• RiverGumSecurity / PythonShellcode

  View on GitHub
  ☆25Jan 12, 2023Updated 3 years ago
• djackreuter / proc_noprocdump

  View on GitHub
  Dump LSASS by spoofing command line arguments to procdump.
  ☆20Oct 21, 2024Updated last year
• DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• Offensive-Panda / LsassReflectDumping

  View on GitHub
  This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…
  ☆216Oct 19, 2024Updated last year
• ajm4n / DLLHound

  View on GitHub
  Find potential DLL Sideloads on your windows computer
  ☆220Jan 12, 2025Updated last year
• CrowdStrike / sccmhound

  View on GitHub
  A BloodHound collector for Microsoft Configuration Manager
  ☆396Jul 7, 2025Updated 8 months ago
• som3canadian / Mythic_NimSyscallPacker_Wrapper

  View on GitHub
  Mythic C2 wrapper for NimSyscallPacker
  ☆25Mar 12, 2025Updated last year
• synacktiv / GPOddity

  View on GitHub
  The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).
  ☆362Dec 13, 2025Updated 3 months ago
• exploide / bhcli

  View on GitHub
  CLI tool to interact with the BloodHound CE API
  ☆70Mar 6, 2026Updated 3 weeks ago
• voidvxvi / HellBunny

  View on GitHub
  Shellcode loader written in C and Assembly utilizing direct or indirect syscalls to evade UM EDR hooks
  ☆139Dec 22, 2024Updated last year