Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Mirrors | Help | Search |
Name: memdump | Distribution: Dag Apt Repository for Red Hat Enterprise Linux 4 |
Version: 1.01 | Vendor: Dag Apt Repository, http://dag.wieers.com/apt/ |
Release: 1.el4.rf | Build date: Wed Feb 16 13:21:10 2011 |
Group: Utilities | Build host: lisse.hasselt.wieers.com |
Size: 28096 | Source RPM: memdump-1.01-1.el4.rf.src.rpm |
Packager: Dag Wieers <dag@wieers.com> | |
Url: http://www.porcupine.org/forensics/tct.html | |
Summary: Tool to dump memory |
What can you expect to find in a system memory dump? Bits from the operating system, from running processes, and from every file and directory that has been accessed recently. Depending on the operating system you may even find some information from deleted files and exited processes, although that information tends to be short-lived. To dump physical memory: memdump | nc host port memdump | openssl s_client -connect host:port For best results send output off-host over the network. Writing to file risks clobbering all the memory in the file system cache. Use netcat, stunnel, or openssl, depending on your requirements.
GPL
* Wed Feb 16 2011 Dag Wieers <dag@wieers.com> - 1.01-1 - Initial package. (using DAR)
/usr/bin/memdump /usr/share/doc/memdump-1.01 /usr/share/doc/memdump-1.01/LICENSE /usr/share/doc/memdump-1.01/README
Generated by rpm2html 1.8.1
Fabrice Bellet, Tue Jul 9 08:45:58 2024