Security Boulevard

mquire: Linux memory forensics without external dependencies

If you’ve ever done Linux memory forensics, you know the frustration: without debug symbols that match the exact kernel version, you’re stuck. These symbols aren’t typically installed on production ...
Bleeping Computer

Microsoft tests live kernel memory dumps in Windows 11 Task Manager

Microsoft is testing a new diagnostic tool in Windows 11 that lets you create live kernel memory dumps without disrupting the operation of Windows. A live kernel dump is a snapshot of the kernel's ...
Neowin

You can now use the Task Manager live kernel dump feature with Windows 11 Dev build 25197

The live kernel dump feature within Task Manager is now available for use with the latest Windows 11 Dev channel build 25197. The option was first added in one of the earlier builds. Earlier today, ...
Ars Technica

Stop error / crash dump forensics - 12GB RAM, x64 fun!

One of our 5 64-bit / 12 GB servers is crashing. I'm trying to figure out why. It's doing a kernel memory dump right now, and the file is ~800MB in size.<BR><BR>I loaded it up with WinDBG on another ...
Ars Technica

Windows 2000 Server won't save a kernel memory dump

We've been trying to get Livevault working on our domain controller.. It's an old server, but other than this incompatibility with having the livevault service enabled, it's been more than reliable ...