From 831de99624d555f8b6090d40aae340918d34a26f Mon Sep 17 00:00:00 2001
From: pe3zx <pe3zx@users.noreply.github.com>
Date: Wed, 27 Oct 2021 13:59:39 +0700
Subject: [PATCH] Add: CCob/MirrorDump to Credential Access section

---
 Offensive.md | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/Offensive.md b/Offensive.md
index 0dcc7e8..a5895fe 100644
--- a/Offensive.md
+++ b/Offensive.md
@@ -1615,6 +1615,10 @@ Some tools can be categorized in more than one category. But because the current
         <td><a href="https://github.com/byt3bl33d3r/SprayingToolkit">byt3bl33d3r/SprayingToolkit</a></td>
         <td>Scripts to make password spraying attacks against Lync/S4B, OWA & O365 a lot quicker, less painful and more efficient</td>
     </tr>
+    <tr>
+        <td><a href="https://github.com/CCob/MirrorDump">CCob/MirrorDump</a></td>
+        <td>Another LSASS dumping tool that uses a dynamically compiled LSA plugin to grab an lsass handle and API hooking for capturing the dump in memory</td>
+    </tr>
     <tr>
         <td><a href="https://github.com/codewhitesec/HandleKatz">codewhitesec/HandleKatz</a></td>
         <td>PIC lsass dumper using cloned handles</td>