Threat Level: green Handler on Duty: Xavier Mertens

SANS ISC: procdump Version 10.1 SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network
https://isc.sans.edu/honeypot.html

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
procdump Version 10.1

A new version of procdump, the Sysinternals tool to create process dumps, was released.

The new feature I'm interesting in, is the possibility to add a comment (option -dc)

I often use procdump, also for dynamic malware analysis, so this -dc option will enable me to do something like:

The second new feature, is a triage dump (-mt). With an intriguing description:

Removal of sensitive information is attempted but not guaranteed

 

Didier Stevens
Senior handler
Microsoft MVP
blog.DidierStevens.com DidierStevensLabs.com

DidierStevens

597 Posts
ISC Handler
Aug 1st 2021
2021 is the 25th birthday of the Sysinternals tools and I recently interviewed Mark Russinovich about them.
https://www.hpe.com/us/en/insights/articles/candid-talk-from-the-man-behind-your-favorite-windows-tools-2107.html
Anonymous

Sign Up for Free or Log In to start participating in the conversation!