VolMalfindDumpAgent

Use the Volatility script to command ldrmodules.

Script Data


NameDescription
Script Typejavascript
Tagsvolatility

Inputs


Argument NameDescription
memdumpThe path to memory dump the file on the system being used.
pidThe process ID to pass to volatility malfind command.
dumpdirThe path to the directory in which to save the dumped memory sections.
dodeleteWhether to delete the directory with the VAD dumps.
systemThe Volatility system to run the script on.

Outputs


There are no outputs for this script.