full-disclosure-uk January 2009 archive
Main Archive Page > Month Archives  > full-disclosure-uk archives
full-disclosure-uk: [Full-disclosure] [Tool Release] PMD v 1.4 h

[Full-disclosure] [Tool Release] PMD v 1.4 has released!!!

From: evil fingers <contact.fingers_at_nospam>
Date: Sat Jan 03 2009 - 00:51:42 GMT
To: full-disclosure@lists.grok.org.uk


 Happy New Year 2009!!!

We are Happy to announce the release of PMDv1.4.

About:
Process Memory Dumper is a little application that allows you to dump the entire memory of the wanted Process. Note this is NOT a PE Dumper, PMD dumps the ENTIRE memory space of the process, so its main usage is devoted to Forensics and Credentials Disclosure Research..or everything limited to the fancy of the user.

Working:
PMD v. 1.1 is merely textual so it's necessary to spent some work to explain how it works. PMD v. 1.2 was the same in GUI. After executing PMD it builds a list of running processes with attached PID, after that the list is completed you have only to insert the PID and PMD will produce a file called DumpedProcess.dmp

ChangeLog:
*Enhanced Process Information:

   FileDate
   ProcessTimings
   uMode Timing/Running Time
   kMode Timing/Kernel Time
   FunctionLister
   Comments
   InternalName
   LegalCopyright
   LegalTrademarks
   OriginalFilename
   PrivateBuild
   ProductVersion
   VersionString
   SpecialBuild
*Process Modules Lister.
*Function Modules Lister

Link to the tool:
http://www.evilfingers.com/tools/ProcessMemoryDumper.php

Any reviews or questions, concerning the tool or anything else could be sent to Contact.Fingers @ gmail.com

Warm Regards,
- EF



Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/