Forensics MemDump Extractor
Forensically sound tool that helps you to extract files such as jpg, gif, pdf from memory dumps. It supports extraction from any kind of binary files like .dmp, .bin, .lime. This tool allows you to perform automated file signature based searching inside memory dump and extract them. You can get rid of time consuming by searching for a file using hex editor in a memory dump.
This portable tool allows you to choose predefined profiles for specific file types and also allows you to create custom profile for a different file format. This software is highly helpful for Digital Forensic Investigators and Ethical Hackers.
--Extracts files from memory dump within seconds
--Extracts any type of files such as jpg, png, pdf, exe etc. residing in memory.
--Standalone and portable application
--Supports custom profile apart from default option (you can create profile for a any file type)
--Option to get number of files residing in memory of selected type instead of extracting
--Extracts files from .dmp, .bin, .lime or any binary files formats
--Live progres status
--Supported OS: Windowx XP/Vista/7/8/8.1/10
This software helps me to extract images and other memory containing files. One thing I noticed is that it extracted icons and other images from exe file without the help of resource extractor, the one I am commonly using. I think it is difficult to get a software to extract files based on signature in Internet. Anyway, the software is nice.