WinPmem

Memory acquisition tool

A tool for acquiring and manipulating physical memory in Windows

The multi-platform memory acquisition tool.

GitHub
708 stars
25 watching
103 forks
Language: C
last commit: 3 months ago
Linked from 1 awesome list


Backlinks from these awesome lists:

Related projects:

Repository Description Stars
microsoft/avml A tool that captures volatile memory images from Linux systems without prior knowledge of the target OS or kernel. 883
crowdstrike/supermem A tool for processing Windows memory images to extract relevant information 260
michaelforney/velox A window manager that uses tag-based management to organize and switch between windows on multiple screens. 506
ufrisk/leechcore A library and remote memory acquisition agent for acquiring physical memory using various methods. 540
natebrune/fmem A Linux kernel module designed to help analyze volatile memory without the limitations of traditional memory dumping tools. 115
n0fate/volafox A memory analysis toolkit for macOS developed in Python 166
nccgroup/windowsmempagedelta Software designed to monitor Windows executable memory page changes to detect anomalies in system behavior 28
mobileforensicsresearch/mem Tool to dump memory from Android devices 66
wmkhoo/taintgrind A tool to track and analyze memory corruption in C programs 253
jamesmenetrey/memorysharp A C# based library allowing safe memory editing in Windows applications to enhance interoperability 639
fullmetalcache/csharpmmniceness Tools for creating and executing memory-mapping 'niceness' in C# source files 31
gleeda/memtriage Analyze Windows machine RAM artifacts using Winpmem and Volatility 218
shanek2/invtero.net Analyzes and validates physical memory from various systems to extract process information and hypervisor details 281
stcarrez/mat A tool to analyze memory usage in programs 7
velocidex/velociraptor An endpoint visibility and collection tool that provides host-based state information using a custom query language. 3,020