A method for obtaining a memory snapshot of a computer while in operation is disclosed. This method
involves using a System Management Interrupt (SMI) to read memory and write it out to a designated
output for further analysis.
Creative Commons License
This work is licensed under a Creative Commons Attribution-Share Alike 4.0 License.
INC, HP, "OS AND HW INDEPENDENT MEMORY SNAPSHOT TOOL FOR ANALYZING SYSTEM STATE AND REVERSE ENGINEERING MALWARE AND BUGS", Technical Disclosure Commons, (November 13, 2019)