How can credentials be extracted when file upload size is restricted in a penetration test?

When upload size is limited, you can upload a C# source file and use the target system's built-in .NET compiler (csc.exe) to compile and execute it. One approach loads a newer version of mimikatz directly from a base64-encoded string (e.g., modified PELoader). Another uses a C# implementation to dump lsass.exe memory to a file, which is then downloaded for offline analysis. Both methods support .NET 3.5 and later, and compilation commands like `csc.exe /unsafe` are used. See the full technique in the original article.