https://github.com/5fingers/lsaexplorer

A .NET tool for interacting with Windows LSA secrets, manipulating privileges, and token impersonation
https://github.com/5fingers/lsaexplorer

dotnet local-security-authority lsa windows

Last synced: 2 months ago
JSON representation

A .NET tool for interacting with Windows LSA secrets, manipulating privileges, and token impersonation

• Host: GitHub
• URL: https://github.com/5fingers/lsaexplorer
• Owner: 5Fingers
• License: mit
• Created: 2024-12-01T07:14:39.000Z (over 1 year ago)
• Default Branch: main
• Last Pushed: 2024-12-01T07:39:15.000Z (over 1 year ago)
• Last Synced: 2025-03-25T08:42:38.281Z (about 1 year ago)
• Topics: dotnet, local-security-authority, lsa, windows
• Language: C#
• Homepage:
• Size: 8.79 KB
• Stars: 0
• Watchers: 1
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

          
![version](https://img.shields.io/badge/version-1.0-blue)

![python versions](https://img.shields.io/badge/.NET->=4.7.2-blue)

[![Windows](https://img.shields.io/badge/os-windows-yellow)](https://github.com/scito/extract_otp_secrets/releases/latest)

# LSAExplorer

LSAExplorer is a C# .NET tool designed to interact with the Windows Local Security Authority (LSA), manipulate privileges, impersonate tokens, and access sensitive registry secrets. It provides detailed insights into LSA secrets and allows for privilege elevation for advanced operations.

---

## Features

- **LSA Secret Management**: Access and retrieve sensitive LSA secrets and their timestamps from the registry.

- **Privilege Elevation**: Elevate the current process to SYSTEM-level privileges using token manipulation.

- **Token Impersonation**: Open and duplicate tokens to impersonate logged-on users.

- **Registry Secret Access**: Interact with and retrieve registry keys under `HKLM\SECURITY\Policy\Secrets`.

- **Winlogon Process Query**: Automatically locate the `winlogon` process ID for SYSTEM impersonation.

---

## Usage

1. Clone the repository:

   ```bash

   git clone https://github.com/yourusername/LSAExplorer.git

   cd LSAExplorer

   ```

2. Open the solution in **Visual Studio**.

3. Build the project for your target platform (x64/x86).

4. Run the compiled executable with Administrator privileges.

5. Launch the executable with elevated privileges:

   ```bash

   LSAExplorer.exe

   ```

6. The tool will:

   - Attempt to open and query registry keys under `HKLM\SECURITY\Policy\Secrets`.

   - Elevate privileges to SYSTEM if required (optional).

   - Read and display LSA secrets, including current and old values along with timestamps.

7. Logs and output will be displayed in the console.

---

## Disclaimer

This tool is intended for **Ethical and Educational Use Only!**
 Use it only in environments where you have explicit permission to perform security operations.
 The author are not liable for any misuse or damages caused by this tool.

---

## License

LSAExplorer is released under the [MIT License](LICENSE).