I noticed on windows vista as well as 7 the task manager allows you to create a dump file of any running process by right clicking on it and selecting "Create Dump file".
Can this be useful to someone reversing a game ?
Results 1 to 4 of 4
Thread: Process dump files
-
2011-04-13, 01:03 AM #1New memberexplosionsinthe
- Join Date
- 2011 Apr
- Posts
- 16
- Thanks
- 1
- Thanks
- 1
- Thanked in
- 1 Post
- Rep Power
- 0
Process dump files
-
-
2011-04-13, 02:34 AM #2VeteranDwar
- Join Date
- 2010 Mar
- Posts
- 2,222
- Thanks
- 211
- Thanks
- 2,230
- Thanked in
- 292 Posts
- Rep Power
- 10
LordPE, PE Tools will do this job. I never tested build-in OS dumper, but at least LordPE has more abilities
Please, post your questions on forum, not by PM or mail
I spend my time, so please pay a little bit of your time to keep world in equilibrium
-
2011-07-23, 01:34 PM #3New memberEnigma
- Join Date
- 2011 Jul
- Posts
- 11
- Thanks
- 0
- Thanks
- 4
- Thanked in
- 3 Posts
- Rep Power
- 0
the built in dumping option is pretty much useless. Best method is still using Debugger/LordPE and Imprec.
-
2011-08-02, 02:19 AM #4VeteranDwar
- Join Date
- 2010 Mar
- Posts
- 2,222
- Thanks
- 211
- Thanks
- 2,230
- Thanked in
- 292 Posts
- Rep Power
- 10
Yeah, there are lots of specialized app for dumping memory
Originally Posted by Enigma
Please, post your questions on forum, not by PM or mail
I spend my time, so please pay a little bit of your time to keep world in equilibrium
Reply With Quote