WinPmem

Memory acquisition tool

A tool for acquiring and manipulating physical memory in Windows

The multi-platform memory acquisition tool.

GitHub
693 stars
25 watching
103 forks
Language: C
last commit: 4 days ago
Linked from 1 awesome list


Backlinks from these awesome lists:

Related projects:

Repository Description Stars
microsoft/avml A tool that captures volatile memory images from Linux systems without prior knowledge of the target OS or kernel. 875
crowdstrike/supermem A tool for processing Windows memory images to extract relevant information 258
michaelforney/velox A window manager that uses tag-based management to organize and switch between windows on multiple screens. 504
ufrisk/leechcore A library and remote memory acquisition agent for acquiring physical memory using various methods. 522
natebrune/fmem A Linux kernel module that provides access to physical memory for analysis and dumping. 115
n0fate/volafox A memory analysis toolkit for macOS developed in Python 165
nccgroup/windowsmempagedelta Software designed to monitor Windows executable memory page changes to detect anomalies in system behavior 28
mobileforensicsresearch/mem Tool to dump memory from Android devices 66
wmkhoo/taintgrind A tool to track and analyze memory corruption in C programs 249
jamesmenetrey/memorysharp A C# based library allowing safe memory editing in Windows applications to enhance interoperability 635
fullmetalcache/csharpmmniceness Tools for creating and executing memory-mapping 'niceness' in C# source files 31
gleeda/memtriage Analyze Windows machine RAM artifacts using Winpmem and Volatility 218
shanek2/invtero.net Analyzes and validates physical memory from various systems to extract process information and hypervisor details 279
stcarrez/mat A tool to analyze memory usage in programs 7
velocidex/velociraptor An endpoint visibility and collection tool that provides host-based state information using a custom query language. 2,975