3 repositorios
Tools for reading and displaying raw memory regions of a running process in hex or ASCII formats.
Distinct from Structured Memory Dumping: Existing candidates focus on container dumps, credential theft, or parsing existing dump files, not the live dumping of memory ranges.
Explore 3 awesome GitHub repositories matching operating systems & systems programming · Process Memory Dumping. Refine with filters or upvote what's useful.
Vimspector is a visual debugger integration for Vim that enables developers to step through code and inspect program state without leaving the editor. It utilizes the Debug Adapter Protocol to provide a unified interface for debugging multiple programming languages through various debug adapters. The project distinguishes itself by supporting low-level analysis and specialized environments, including bare metal hardware debugging for microcontrollers and the ability to perform disassembly analysis and process memory dumping. It also provides remote debugging capabilities by proxying requests
Reads and displays hex and ASCII dumps of process memory for specific variables or memory addresses.
MimiPenguin es un extractor de credenciales de memoria de Linux y herramienta de recuperación de contraseñas diseñada para aislar y recuperar contraseñas de inicio de sesión de usuario en texto plano de la memoria de procesos activos. Funciona como una utilidad de post-explotación para extraer credenciales sensibles de sesiones de usuario de escritorio durante evaluaciones de seguridad. La herramienta realiza análisis forense de memoria de Linux analizando la memoria de procesos del sistema para identificar y aislar credenciales. Se utiliza para pruebas de penetración de seguridad y evaluación de riesgos asociados con ataques basados en memoria, así como para probar la escalada de privilegios local. El sistema se dirige a la memoria de la sesión de usuario volcando la memoria virtual de los procesos en ejecución. Utiliza escaneo de memoria basado en patrones, identificación heurística de contraseñas y aislamiento de credenciales en texto plano para distinguir posibles contraseñas de datos binarios.
Reads the virtual memory of running user processes by accessing system-level memory interfaces to extract raw data.
Clutch is a command-line utility designed for security research on jailbroken mobile devices. It functions as a specialized toolkit for identifying, decrypting, and extracting installed mobile application binaries to facilitate manual code inspection and vulnerability assessment. The tool provides capabilities for removing platform-level encryption from protected software, allowing researchers to isolate core executable files from application bundles. By performing memory-mapped file dumping and reconstructing binary headers, it enables the conversion of protected applications into portable,
Dumps raw data from process memory after the system loader has performed initial decryption.