Security News > 2023 > January > Microsoft tests live kernel memory dumps in Windows 11 Task Manager
Microsoft is testing a new diagnostic tool in Windows 11 that lets you create live kernel memory dumps without disrupting the operation of Windows.
A live kernel dump is a snapshot of the kernel's memory at the time of the dump, which is then saved to a file.
In a new Windows 11 preview build 25176, released earlier today to the Windows Insider Dev channel, Microsoft has added a new feature that lets you create live kernel memory dumps in Task Manager.
In the latest build, you can capture a live kernel memory dump by going to the Details page in Task Manager, right-clicking on the System process, and selecting the "Create live kernel memory dump file" option.
This will capture a Full live kernel or Kernel stack memory dumps and can be used to troubleshoot bugs and performance issues that Microsoft describes as "Abnormal" but don't prevent Windows from running.
The Windows 11 Task Manager has seen frequent updates from Microsoft, with a new design based on Fluent UI and WinUI, and the company also added a search bar to the app.
News URL
Related news
- Microsoft says premature patch could make Windows Recall forget how to work (source)
- Microsoft says having a TPM is "non-negotiable" for Windows 11 (source)
- Microsoft lifts Windows 11 24H2 block on PCs with USB scanners (source)
- Windows kernel bug now exploited in attacks to gain SYSTEM privileges (source)
- Microsoft says Auto HDR causes game freezes on Windows 11 24H2 (source)
- Microsoft adds another problem to the Windows 11 24H2 naughty list (source)
- Microsoft may have scrapped Windows 11's dynamic wallpapers feature (source)
- Microsoft to force install new Outlook on Windows 10 PCs in February (source)
- Microsoft: macOS bug lets hackers install malicious kernel drivers (source)
- Microsoft 365 apps crash on Windows Server after Office update (source)