rongchaua Posted September 17, 2007 Posted September 17, 2007 Hi all,I would like to dump the memory of a process to a file (as we use Winhex to dump memory and save to file). But I don't know where to start. Are there any library to do that or some tutorial about this problem?Thank you very much.rca.
What Posted September 18, 2007 Posted September 18, 2007 (edited) If I understand you right, you want to dump a section and add it to a new file? Or do you want the whole file? When dumping memory sections look into memory map of olly and right click section and click dump memory section. Now open up lord pe, select the file of choice (file you want to add section to) in pe editor, go to sections, right click and click load section from disk. Edited September 18, 2007 by What
Ufo-Pu55y Posted September 18, 2007 Posted September 18, 2007 (edited) You're after a source for .net dumping, right ?There was a c++ source by Pnluck.I just had a look, but couldn't find it anymore :/I'm sure, some of the others own that source ?EDIT/Naw.. found it:http://pmode.net/USERS/117/Files/netreversing.html Edited September 18, 2007 by Ufo-Pu55y
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now