[SANS ISC] procdump Version 10.1, (Sun, Aug 1st)

A new version of procdump, the Sysinternals tool to create process dumps, was released.

The new feature I’m interesting in, is the possibility to add a comment (option -dc)

I often use procdump, also for dynamic malware analysis, so this -dc option will enable me to do something like:

The second new feature, is a triage dump (-mt). With an intriguing description:

Removal of sensitive information is attempted but not guaranteed

 

Didier Stevens
Senior handler
Microsoft MVP
blog.DidierStevens.com DidierStevensLabs.com

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

Source: Read More (SANS Internet Storm Center, InfoCON: green)

You might be interested in …

[ThreatPost] ‘An0m’ Encrypted-Chat Sting Leads to Arrest of 800

All posts, ThreatPost

The FBI and Australian law enforcement set up the encrypted chat service and ran it for over 3 years, seizing weapons, drugs and over $48m in cash. Source: Read More (Threatpost)

Read More

Daily NCSC-FI news followup 2021-07-28

2021 Global IoT Trends Report www.newark.com/iot-trends-2021 We reached out to our global customer base with an IoT survey between September 2020 and December 2020. We got 2,095 completed questionnaires, primarily from engineers of IoT solutions, in 60 countries. S.Africa’s Port Terminals Still Disrupted Days After Cyber-Attack www.securityweek.com/safricas-port-terminals-still-disrupted-days-after-cyber-attack The attack has affected ports in Durban — […]

Read More

[ZDNet] International cryptocurrency scam ring targets European dating app users

All posts, ZDNet

You might lose your money as well as your heart. Source: Read More (Latest topics for ZDNet in Security)

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.