Become an AceSign inSign up
Mr-Un1k0d3r/ MiniDump
C# C
View on GitHub
Need help with MiniDump?
Click the “chat” button below for chat support from the developer who created it, or find similar developers for support.

About the developer

Mr-Un1k0d3r
164 Stars 32 Forks 25 Commits 0 Opened issues

Description

alternative to procdump

Services available

!
?

Need anything else?

Contributors list

Mr.Un1k0d3r Mr-Un1k0d3r
# 50,560
C#
bluetea...
dfir
Visual ...
 25 commits

MiniDump

alternative to procdump written in 

C#
(perfect for execute-assembly) and 
C
.

Usage

MiniDumpCs.exe PID

> MiniDumpCs.exe 620
MiniDumpWriteDump found at 0x000007FEE3891EF0
Trying to dump PID: 620
Process HANDLE 0x0000000000000024
memory.dmp HANDLE 0x0000000000000028
Process Completed (1)(87)

Compiling the C version

For 64 bits systems 

x86_64-w64-mingw32-gcc.exe dump.c -o dump64.exe

For 32 bits systems 

mingw32-gcc.exe dump.c -o dump.exe

EDRs bypass

Both the 

C
and 
C#
version offer a 
64 bits
version that is patching the code to avoid user mode hook put in place by most EDRs.

Credit

Mr.Un1k0d3r RingZer0 Team

We use cookies. If you continue to browse the site, you agree to the use of cookies. For more information on our use of cookies please see our Privacy Policy.