A new version of procdump, the Sysinternals tool to create process dumps, was released.
The new feature I’m interesting in, is the possibility to add a comment (option -dc)
I often use procdump, also for dynamic malware analysis, so this -dc option will enable me to do something like:
The second new feature, is a triage dump (-mt). With an intriguing description:
Removal of sensitive information is attempted but not guaranteed
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
Source: Read More (SANS Internet Storm Center, InfoCON: green)