Utilities

MoonSols HyperTaskMgr
More information about HyperTaskMgr

MoonSols HyperTaksMgr is a new generation Task Manager for IT Professionals to manage Windows Virtual Machines running under Microsoft Hyper-V R2 Hypervisor. HyperTaskMgr is running on the host, it’s easily deployable (One executable and one dll in total). You don’t need to install anything inside the target windows virtual machines.

MoonSols LiveCloudKd
More Information

MoonSols’ LiveCloudKd also allows you to run the Kd and WinDbg from the Microsoft Debugging Tools Package – locally on the host machine – but not for your live system but for all Virtual Machines running in Microsoft Hyper-V R2. It makes it possible to execute all the debugger’s commands that work during the analyzis of a Microsoft crash dump. This includes writing commands – Which makes also possible to modify the memory (code, kernel structures …) of a running Microsoft Hyper-V Virtual Machine.

MoonSols DumpIt
Download
This utility is used to generate a physical memory dump of Windows machines. It works with both x86 (32-bits) and x64 (64-bits) machines.
The raw memory dump is generated in the current directory, only a confirmation question is prompted before starting.
Perfect to deploy the executable on USB keys, for quick incident responses needs.

MoonSols Windows Memory Toolkit
More Information

MoonSols Windows Memory Toolkit is the ultimate toolkit for memory dump conversion and acquisition on Windows. This toolkit had been designed to deal with various types of memory dumps such as VMWare memory snapshot, Microsoft crash dump and even Windows hibernation file.

MoonSols Windows Memory Toolkit had been designed to deal with Microsoft Windows hibernation file (from Microsoft Windows XP to Microsoft Windows 7 in both 32-bits and 64-bits (x64) Editions), Microsoft full memory crashdump (in both 32-bits and 64-bits (x64) Editions), and raw memory dump files (from memory acquisition tools like win32dd or win64dd, or Virtualization application like VMWare). Moreover, MoonSols Windows Memory Toolkit also contains new version of win32dd and win64dd.

MoonSols dinfo
More information

dinfo utility helps IT Administrator to display information (including generated password) from files generated with Windows 2008 R2 djoin utility.

WinDbg Script to display global callbacks
More information

WinDbg Script to display Windows Services
More information

10 Comments

  1. Analyse de la mémoire : Volatility 2.0 et DumpIt | Hat Hacker

    […] Dumpit est probablement l’utilitaire de dump de la mémoire Windows le plus performant (très rapide et simple d’utilisation), développé par Matthieu SUICHE vous pourrez le retrouver sur son site : DumpIT. […]

  2. 阅读时间 - 20110913 | 乌托邦

    […] toolsmith: Memory Analysis with DumpIt and Volatility,很不错!在线分析的好方法~ Volatity DumpIt […]

  3. 101 Utilidades para Forensia | Capitan Crunch

    […] DumpIt […]

  4. 101 utilidades forenses | Blog de Seguridad Informática

    […] DumpIt […]

  5. 101 Utilidades Forenses « Tecnologia al Dia

    […] DumpIt […]

  6. Outils gratuits de sécurite informatique | Data Security Breach

    […] DumpIt […]

  7. Windows Üzerinde Memory Dump Uygulaması | << DataMaN'in Sayfası

    […] Winhex: MoonSols DumpIt:

  8. Marco

    Hello,
    I’m looking for silent options of DumpIt without any keys to press and automatic closing.
    Does someone is able to tell me how to do it?
    Thanks
    Marco

  9. msuiche

    Hi Marco,

    You’d need to have the version 2, MoonSols Windows Memory Toolkit to access such options.

    Best,

  10. ‽IT | Gratis blogg - Blogg Norge - Blogger

    […] Moonsols Dumpit and Memory Toolkithttps://www.moonsols.com/resources/ […]