Minidump
Description
Creates a memory dump from the target process.
Command
shencode core minidump [-h] -o OUTPUT -p PROCESSNAME [-m MINIDUMPTYPE]
Create a dump of a running process
options:
-h, --help show this help message and exit
-o, --output Output file
-p, --processname Processname to dump
Optional::
-m, --minidumptype Type of the minidump (default: MiniDumpWithFullMemory)Example Output
[*] Getting PID from Notepad.exe
[+] PID: 27320
[*] Try to receive a process handle
[+] Process handle received
[*] Try to open the output file
[+] File created and writable
[*] Load dbghelp.dll
[+] dbghelp.dll loaded
✔ Writing minidump
[+] File created in prc_dump.dmp
[#] Hash: 39093d7f080eb0c0668c04d612463d464192273d
[+] DONEJSON Parameter
| Arguments | Values | Type |
|---|---|---|
| output | filename | str |
| processname | processname | str |
| minidumptype | type of the minidump | dword |