Release MemProcFS-Analyzer-v0.8 · evild3ad/MemProcFS-Analyzer

Added: MUICache
Added: Windows Background Activity Moderator (BAM)
Added: Check if it's a Domain Controller
Added: Check if it's a Microsoft Exchange Server
Added: jq - Command-line JSON processor
Added: Checking for processes spawned from suspicious folder locations
Added: Checking for suspicious processes without any command-line arguments
Added: Checking for suspicious process lineage
Added: Checking for processes with suspicious command-line arguments
Added: Parent Name (proc.csv, Processes.xlsx, and RunningandExited.xlsx)
Added: Listing of MiniDumps
Added: Status Bar (User Interface)
Fixed: Other minor fixes and improvements

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

MemProcFS-Analyzer-v0.8