Replacing User Mode Process Dumper with ProcDump

The Microsoft User Mode Process Dumper is no longer available. Alternate Sysinternals Tool would be ProcDump
This commit is contained in:
Explie 2020-10-28 13:43:10 +01:00 committed by GitHub
parent 22b3932946
commit b5cbb95ece
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23

View File

@ -198,7 +198,7 @@ Digital Forensics and Incident Response (DFIR) teams are groups of people in an
### Process Dump Tools ### Process Dump Tools
* [Microsoft User Mode Process Dumper](http://www.microsoft.com/en-us/download/details.aspx?id=4060) - Dumps any running Win32 processes memory image on the fly. * [Microsoft ProcDump](https://docs.microsoft.com/en-us/sysinternals/downloads/procdump) - Dumps any running Win32 processes memory image on the fly.
* [PMDump](http://www.ntsecurity.nu/toolbox/pmdump/) - Tool that lets you dump the memory contents of a process to a file without stopping the process. * [PMDump](http://www.ntsecurity.nu/toolbox/pmdump/) - Tool that lets you dump the memory contents of a process to a file without stopping the process.
### Sandboxing/reversing tools ### Sandboxing/reversing tools