Last Updated: 2021-08-01 09:22:25 UTC
by Didier Stevens (Version: 1)
A new version of procdump, the Sysinternals tool to create process dumps, was released.
The new feature I'm interesting in, is the possibility to add a comment (option -dc)
I often use procdump, also for dynamic malware analysis, so this -dc option will enable me to do something like:
The second new feature, is a triage dump (-mt). With an intriguing description:
Removal of sensitive information is attempted but not guaranteed