From Crash to Compromise: Unlocking the Potential of Windows Crash Dumps in Offensive Security
Windows crash dump files, frequently overlooked in offensive contexts despite their forensic value, contain several sensitive elements that threat actors can exploit for privilege escalation, credential harvesting, lateral movement, and data exfiltration.
sans-jason-mull-from-crash-compromise (PDF, 1.83MB)
9 May 2025Related Content
Enhancing Security Operations with Google Threat Intelligence
Research PaperThis product review examines how Google Threat Intelligence's extensive data sources, real-time insights, and investigative capabilities can elevate SecOps workflows and strengthen an organization’s defensive posture.
- 24 Nov 2025
- Dave Shackleford
Continuous Penetration Testing: Closing the Gaps Between Threat and Response
Research PaperThis paper examines how Sprocket Security leverages attack surface management (ASM) to provide defenders with much-needed visibility and control.
- 5 Sep 2025
- Chris Dale
Writing a Penetration Testing Report
Research PaperWriting a penetration testing report is an art that needs to be learned to make sure that the report...
- 29 Apr 2010
- Mansour Alharbi