-
Notifications
You must be signed in to change notification settings - Fork 384
dpapi minidump command
skelsec edited this page Apr 13, 2021
·
2 revisions
Parses the LSASS minidump file and extracts all prekeys and masterkeys stored there.
I'd suggest to use the -o parameter, it will help you on your journey.
LSASS minidump file :)
None
-
-o: Writes the prekeys in a text file and masterkeys in a separate json file.
-
pypykatz dpapi minidump lsass.dmp -o dpapi_keys: Parses the minidump file and writes the keys to two separate files.