-
Is there a way to access the contents of the clipboard, similar to the Clipboard command in Volatility 2?
For instance, Windows 11 seems to cache some content in **C:\Users\{username}\AppData\Local\…
-
Integrate a physical memory dumping tool to avoid having to open a process handle to `lsass.exe` when acquiring mimikatz-able memory dumps.
https://zeltser.com/memory-acquisition-with-dumpit-for-df…
-
The following project integrates Winpmem to read memory, but some computers do not work. I do not know the reason, and the author is not very clear. It seems that I was asked to ask Winpmem. I don't k…
-
Coming here from https://github.com/ufrisk/MemProcFS/issues/333
-
https://blogs.gentoo.org/ago/2020/07/04/gentoo-tinderbox/
Issue: dev-libs/memprocfs-5.0 overwrites CFLAGS/CXXFLAGS or adds uncommon ones.
Discovered on: amd64 (internal ref: pentoo_tinderbox)
NOTE:
…
-
write memory is not safe
xb0or updated
1 month ago
-
DMA has implemented a fix cr3 using MemProcFS, as seen at https://github.com/Metick/DMALibrary/blob/d488cdc804cf26674637bfa49c2a349d408a8363/DMALibrary/Memory/Memory.cpp#L439. How should I go about ma…
-
I have four FPGA devices on one PC and I realized that devindex is not constant. devindex=0 for the FPGA on PC A. Next time I turn on the PC, I may need devindex=1 to properly turn on the FPGA on PC A…
-
F:\MemProcFS>MemProcFS.exe -f memory1.raw -loglevel symbol:4
[SYMBOL] Unable to download required debug symbols ntkrnlmp.pdb - manual download possible.
[SYMBOL] Download from:
[SYMBOL] htt…
-
Run PowerShell with Administer
In MemProcFS-Analyzer-v1.1.0\Logs\Updater.txt:
MemProcFS-Analyzer Updater v0.1 - Automated Installer/Updater for MemProcFS-Analyzer
(c) 2024 Martin Willing at Let…