scan memory dump for PE headers · RWX sections · shellcode · reflective injection
drop memory dump
Drop .dmp / .vmem / .raw memory dump
scans for PE headers at unexpected offsets, RWX regions, shellcode
status
drop a Windows memory dump (.dmp, .vmem, .raw)