PPLdump
PPLdump copied to clipboard
itm4n
Dump the memory of a PPL with a userland exploit
HI, Nice work as always! I think I might've found one of the potential issues on Windows Server 2012 R2, which causes the `[-] DefineDosDevice failed with error code 6...
For some reason, the call to AttachConsole fails on my machine. Any tips?
Successfully compiled the code and ran from an admin terminal with debug but didn't get the expected extraction of lsass.dmp. Everything appeared to be working fine up until the last...
The security descriptor returned from GetSecurityInfo needs to be freed by the caller: https://docs.microsoft.com/en-us/windows/win32/api/aclapi/nf-aclapi-getsecurityinfo > A pointer to a variable that receives a pointer to the security descriptor of the...
Some code correctness issues in PPLDump These are hygiene issues. Some of these are low priority and edge cases. I initially spotted these in the port of the code here:...
I use VS 2022 to build project After excute, I get error ``` [*] Found a process with name 'lsass' and PID 1020 [-] Process with ID 1020 is not...
