A process dumper written in C++ 17 with Windows Driver Kit using ioctl for communication between kernel-mode <-> user-mode even if handles are stripped.
before using dumper.exe you have to load the driver using your preferred mapper.
kdmapper, WindowsD, gdrv-loader
and then it's just
dumper.exe notepad.exe
or dumper.exe EscapeFromTarkov.exe
before anyone go and judge me i mix camel case and snake case because Windows Kernel stuff just matches camel case while snake case is more my personal coding style.
requires Visual Studio 2019 requires Windows Driver Kit (WDK) requires a working computer