Skip to content

ReFo0/process-dumper

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

16 Commits
dumper
dumper
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
dumper.sln
dumper.sln
 
 
polygon.jpg
polygon.jpg
 
 

Repository files navigation

PE File Dumper

This C++ code functions as a PE (Portable Executable) file dumper, allowing you to extract the entire contents of a running executable and save it as a separate file.

Description

This code utilizes the Windows API to locate and extract the contents of the current process's executable and save it to a new file with a "_dump.exe" extension.

How It Works

  1. The code retrieves the base address of the current process's executable.
  2. It creates a copy of the entire executable in memory.
  3. It updates the section headers to match the new location and size of the sections.
  4. The dumped content is then saved as a new file with "_dump.exe" appended to the original file name.

About

process dumper

Topics

pefile dump dumper processdumper

Resources

Readme

License

GPL-3.0 license
Activity

Stars

8 stars

Watchers

3 watching

Forks

3 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages