ProcHeapViewer 2.0, tool to scan process heaps now comes with integrated search feature which makes it easy to find ascii as well as unicode strings within the heap blocks.
Also this new version has better user interface which not only gives it cool look & feel but makes it easy to use.
The powerful aspect of this tool is that it scans process heaps faster than any other method as it does not use typical Windows heap functions but uses undocumented techniques which improves the performance substantially.
I have published detailed article explaining about this undocumented technique along with code sample.
It is very useful for anyone involved in troubleshooting process heap related problems as well as researching on security issues surrounding process heaps. Now with search feature it will be more easier and better to use than earlier.
For latest version and updates, please visit the website at Securityxploded.com
Disclaimer: As with everything else at NetIQ Cool Solutions, this content is definitely not supported by NetIQ, so Customer Support will not be able to help you if it has any adverse effect on your environment. It just worked for at least one person, and perhaps it will be useful for you too. Be sure to test in a non-production environment.