ProcHeapViewer is a fast heap enumeration tool which uses better technique than normal Windows heap API functions. Its very useful tool for anyone involved in analyzing process heaps. Vulnerability researchers can find it useful while working on heap related vulnerabilities.
Traditional Windows heap enumeration functions are slower and takes lot of time while traversing large number of heap blocks. Here is the article which uncovers the reason behind the slower functionality of heap functions. It also explains new efficient way of enumerating process heaps based on reverse engineering of Windows heap API functions.
You can read more interesting details about ProcHeapViewer here.
– Nagareshwar Talekar
Hi Nag ..
I tried using your heapviewer to enumerate the heaps on a program that I’m trying to debug … however, it seems to list the heaps used, but it does not enumerate the allocations ? Any reason why it would do that
Rajneesh