PE-sieve scans a given process, searching for the modules containing in-memory code modifications. When found, it dumps the modified PE. Detects inline hooks, hollowed processes, Process Doppelgänging etc. Can be used for unpacking malware.
Poland
EU
Process Dump AlternativesProcess Monitoring Tools and other similar apps like Process Dump
Process Dump is described as 'Dumps memory components from specific processes or from all processes currently running. Supports creation and use of a clean-hash database, so that dumping of all the clean files such as kernel32.dll can be skipped' and is a process monitoring tool in the development category. There are 2 alternatives to Process Dump for Windows. The best Process Dump alternative is PE-sieve, which is both free and Open Source.
Alternatives list
LiveDump is a simple memory dumper which will either dump a region of memory once to a file or constantly dump it every X many milliseconds.
Cost / License
- Free
- Proprietary
Platforms
- Windows
