Fails to dump process as kernel driver
Closed this issue · 3 comments
Mrgaton commented
Brief description of your issue
When try to dump protected proces via cli it says invalid function name
Steps to reproduce (optional)
No response
Expected behavior (optional)
No response
Actual behavior (optional)
No response
Environment (optional)
No response
dmex commented
This is the expected behavior.
Mrgaton commented
Then how I can dump protected processes
jxy-s commented
- Ask Microsoft
- You don't need System Informer or our driver to do this, some light research will yield you something
- Consider using a kernel debugger