Awesome-Mirrors/awesome-incident-response
1
0
Fork 0
mirror of https://github.com/meirwah/awesome-incident-response.git synced 2024-10-01 01:06:19 -04:00
Code Issues Packages Projects Releases Wiki Activity

Replacing User Mode Process Dumper with ProcDump

Browse Source 
The Microsoft User Mode Process Dumper is no longer available. Alternate Sysinternals Tool would be ProcDump
This commit is contained in:
Explie 2020-10-28 13:43:10 +01:00 committed by GitHub
parent 22b3932946
commit b5cbb95ece
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
README.md
View File

@ -198,7 +198,7 @@ Digital Forensics and Incident Response (DFIR) teams are groups of people in an
### Process Dump Tools ### Process Dump Tools
* [Microsoft User Mode Process Dumper](http://www.microsoft.com/en-us/download/details.aspx?id=4060) - Dumps any running Win32 processes memory image on the fly. * [Microsoft ProcDump](https://docs.microsoft.com/en-us/sysinternals/downloads/procdump) - Dumps any running Win32 processes memory image on the fly.
* [PMDump](http://www.ntsecurity.nu/toolbox/pmdump/) - Tool that lets you dump the memory contents of a process to a file without stopping the process. * [PMDump](http://www.ntsecurity.nu/toolbox/pmdump/) - Tool that lets you dump the memory contents of a process to a file without stopping the process.
### Sandboxing/reversing tools ### Sandboxing/reversing tools