Skip to content

First release

Latest
Latest
Compare
Choose a tag to compare
@atxr atxr released this 31 Jul 07:37
· 1 commit to main since this release
v1.0.0
b71fa16
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

📽️ Extract Minidump from TTD trace at a given position

Select a position with:

⌚ A TTD cursor
🪝 A function hook

Information extracted:

🧵 Threads:

  • Thread id
  • Thread stack range
  • Thread stack
  • Thread context
  • TEB

🧩 Modules:

  • Module name
  • Module memory range
  • Module memory

📑 Heap

  • Heap ranges generated by tracing ntdll!NtAllocateVirtualMemory calls
  • Heap memory

⚙️ System Information

  • Processor architecture

Full Changelog: https://github.com/airbus-cert/ttd2mdmp/commits/v1.0.0

Assets 3