Mastodawn

Ulf Frisk Aug 16, 2025

@reverseics Thank You for your sponsorship 💖 It's things like this making it worth for me to continue working on PCILeech after all these years.

It's super nice to know you found my tools useful. And yeah, PCILeech has become very popular with games as of late. I didn't create the tool with the games use case in mind, and I try to keep some distance to avoid troubles. Still, it's super nice to see you found PCILeech useful, and I wish you the best of luck in your research!

Ulf Frisk Aug 16, 2025

K. Reid Wightman

🌻

Aug 15, 2025

Donated to the PCILeech project today.

It is amazing how easy dma stuff is now. And how cheap. I tooted some appreciaation earlier in the week, but this afternoon I had some first success against an actual research target. The victim does a pretty good job of locking things down, but DMA attacks are really fun when they work.

Thanks to @UlfFrisk, and of course to the videogame cheating community (like 99.5% of the tutorials on flashing and using pcileech have "setting up your aimboat" as the last step, lulz).

I'm not a gamer, but I kinda appreciate that there is a weird community of people doing DMA attacks in order to 'win' at shooters or whatever. They certainly make the hardware cost a lot less...

Ulf Frisk Jan 16, 2025

PCILeech PCIe DMA attacks and MemProcFS memory forensics now runs on macOS analyzing Windows memory!

MemProcFS 5.14 and PCILeech 4.19 just released!
https://github.com/ufrisk/MemProcFS
https://github.com/ufrisk/pcileech

Ulf Frisk Nov 27, 2024

MemProcFS 5.13 released!

Callstack parsing, improved file recovery and more! MemProcFS - easy and fast memory forensics! https://github.com/ufrisk/MemProcFS

GitHub - ufrisk/MemProcFS: MemProcFS

MemProcFS. Contribute to ufrisk/MemProcFS development by creating an account on GitHub.

GitHub

Ulf Frisk Nov 14, 2024

Improvements to MemProcFS forensic file recovery in 5.12.6. More data is now recovered, with correct file sizes, and with file signing info!

MemProcFS super fast memory forensics and analysis: https://github.com/ufrisk/MemProcFS

GitHub - ufrisk/MemProcFS: MemProcFS

MemProcFS. Contribute to ufrisk/MemProcFS development by creating an account on GitHub.

GitHub

Show thread

Ulf Frisk Oct 22, 2024

@Lee_Holmes Huge thanks for sharing! I'll definitely be looking into this 😀

Ulf Frisk Oct 21, 2024

MemProcFS now supports console text recovery!

Recover text from Cmd and Powershell to Find Evil with MemProcFS super fast memory forensics!

https://github.com/ufrisk/MemProcFS

GitHub - ufrisk/MemProcFS: MemProcFS

MemProcFS. Contribute to ufrisk/MemProcFS development by creating an account on GitHub.

GitHub

Ulf Frisk Jul 12, 2024

MemProcFS 5.10 released! Support for Windows 11 24H2 added!

MemProcFS - super fast memory forensics of live memory and memory dumps!
https://github.com/ufrisk/MemProcFS

GitHub - ufrisk/MemProcFS: MemProcFS

MemProcFS. Contribute to ufrisk/MemProcFS development by creating an account on GitHub.

GitHub

Ulf Frisk Jun 12, 2024

chompie Jun 12, 2024

microsoft: Exploit Code Unporoven

me: i literally gave you a compiled PoC and also exploit code

m$: No exploit code is available, or an exploit is theoretical.

me:

Ulf Frisk Apr 23, 2024

Added a quick system overview to MemProcFS memory forensics. Check out one place for a summary rather than many locations as before.
https://github.com/ufrisk/MemProcFS

GitHub - ufrisk/MemProcFS: MemProcFS

MemProcFS. Contribute to ufrisk/MemProcFS development by creating an account on GitHub.

GitHub

Github	https://github.com/ufrisk
Twitter	https://twitter.com/UlfFrisk
Blog	https://blog.frizk.net
Discord	UlfFrisk#5780