procdump Version 10.1

Published: 2021-08-01
Last Updated: 2021-08-01 09:22:25 UTC
by Didier Stevens (Version: 1)
1 comment(s)

A new version of procdump, the Sysinternals tool to create process dumps, was released.

The new feature I'm interesting in, is the possibility to add a comment (option -dc)

I often use procdump, also for dynamic malware analysis, so this -dc option will enable me to do something like:

The second new feature, is a triage dump (-mt). With an intriguing description:

Removal of sensitive information is attempted but not guaranteed

 

Didier Stevens
Senior handler
Microsoft MVP
blog.DidierStevens.com DidierStevensLabs.com

1 comment(s)

Comments

2021 is the 25th birthday of the Sysinternals tools and I recently interviewed Mark Russinovich about them.
https://www.hpe.com/us/en/insights/articles/candid-talk-from-the-man-behind-your-favorite-windows-tools-2107.html

Diary Archives