What registry setting is needed to enable complete memory dumps, and how can a blue screen be triggered?

To enable complete memory dumps, set `HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\CrashControl\CrashDumpEnabled` to 1 (REG_DWORD). This can be done with the command `reg add hklm\SYSTEM\CurrentControlSet\Control\CrashControl /v CrashDumpEnabled /t REG_DWORD /d 1 /f`. A BSOD can be forced by terminating a critical process like `lsass.exe` or by using Sysinternals' NotMyFault with the `/crash` switch. After the crash, the dump file is created at `c:\windows\MEMORY.DMP`. For more on credential extraction from remote sessions, see Penetration Technique - Extracting User Plaintext Passwords via CredSSP.