: Allows users to inspect a process's memory for strings (like IP addresses, domains, or user agents) and even inject DLLs into active processes.
(ProcessHacker.exe) is a free, open-source, and highly advanced system monitoring tool that serves as a powerful alternative to the Windows Task Manager. It is a staple for security professionals, malware analysts, and power users who need deep visibility into system activity. Core Functionality
: View, terminate, and manipulate running processes with granular control. It can terminate many processes that standard security software or Task Manager cannot.
: Uses a dedicated driver ( KProcessHacker ) to capture kernel-mode stack traces, enumerate process handles more efficiently, and retrieve names for protected system objects.
: Provides a detailed list of system services and advanced resource information, including registry handles, file handles, and semaphores. Why It's Used in Malware Analysis
: Displays active network connections and bound ports in real-time, allowing you to see exactly which processes are communicating over the web.
This LMC simulator is based on the Little Man Computer (LMC) model of a computer, created by Dr. Stuart Madnick in 1965. LMC is generally used for educational purposes as it models a simple Von Neumann architecture computer which has all of the basic features of a modern computer. It is programmed using assembly code. You can find out more about this model on this wikipedia page.
You can read more about this LMC simulator on 101Computing.net.
Note that in the following table “xx” refers to a memory address (aka mailbox) in the RAM. The online LMC simulator has 100 different mailboxes in the RAM ranging from 00 to 99.
| Mnemonic | Name | Description | Op Code |
| INP | INPUT | Retrieve user input and stores it in the accumulator. | 901 |
| OUT | OUTPUT | Output the value stored in the accumulator. | 902 |
| LDA | LOAD | Load the Accumulator with the contents of the memory address given. | 5xx |
| STA | STORE | Store the value in the Accumulator in the memory address given. | 3xx |
| ADD | ADD | Add the contents of the memory address to the Accumulator | 1xx |
| SUB | SUBTRACT | Subtract the contents of the memory address from the Accumulator | 2xx |
| BRP | BRANCH IF POSITIVE | Branch/Jump to the address given if the Accumulator is zero or positive. | 8xx |
| BRZ | BRANCH IF ZERO | Branch/Jump to the address given if the Accumulator is zero. | 7xx |
| BRA | BRANCH ALWAYS | Branch/Jump to the address given. | 6xx |
| HLT | HALT | Stop the code | 000 |
| DAT | DATA LOCATION | Used to associate a label to a free memory address. An optional value can also be used to be stored at the memory address. |