Hey all,
this might be a bit of a noob question, but is there a simple way of dumping the memory in Linux. i've been looking around i cant seem to find a good answer. I would like something that works with 2.8-3.0 kernels.
does anyone know of any free tools which would work?
thanks all!
L.
Two methods for getting information in Linux.
The /proc directory is a volatile file system consisting of memory. Inside is numbered folders, each corresponding with the Process ID. There are a bunch of files in there, but I don't recall what all of them do. I do know that one is the original executable.
Secondly, you can use memdump, but I don't know what you can use to analyze it, since all the tools I know (or have bothered to find out) analyze Windows memory. I believe memdump is standard on Linux, ubuntu at least.
use fmem