Sysinternals Tools Updates

Started by Corrine, August 16, 2022, 05:59:21 PM

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.

Corrine

Sysinternals is a suite of free utilities used to monitor, manage and troubleshoot the Windows operating system.

History
Sysinternals Blog
Downloads


Take a walk through the "Security Garden" -- Where Everything is Coming up Roses!

Remember - A day without laughter is a day wasted.
May the wind sing to you and the sun rise in your heart.

Corrine

From ZoomIt v6.01, BgInfo v4.31, and ProcMon v3.91

ZoomIt v6.01
This release for ZoomIt fixes a 32 bit bug.
 
BgInfo v4.31
This release for BgInfo fixes a 32 bit crash.
 
ProcMon v3.91
This release for Process Monitor fixes an ARM64 driver load error.


Take a walk through the "Security Garden" -- Where Everything is Coming up Roses!

Remember - A day without laughter is a day wasted.
May the wind sing to you and the sun rise in your heart.

Corrine

Sysmon 14.0 has been just released by @Sysinternals

Update Information: Sysmon 14.0 — FileBlockExecutable
Download: Sysmon v14.0

Via Mark Russinovich on Twitter:

QuoteNew Sysmon v14 release, introducing block-exe rule that we made specifically to foil Russian malware targeting Ukrainian systems


Take a walk through the "Security Garden" -- Where Everything is Coming up Roses!

Remember - A day without laughter is a day wasted.
May the wind sing to you and the sun rise in your heart.

Corrine

From Sysmon v14.1, Coreinfo v3.6, AccessEnum v1.35, BgInfo 4.32, and NotMyFault 4.21

Sysmon v14.1
This update to Sysmon, an advanced host monitoring tool, adds a new event type, FileBlockShredding that prevents wiping tools such as Sysinternals SDelete from corrupting and deleting files.

Coreinfo v3.6
This update to Coreinfo, a utility that reports system CPU, memory and cache topology and information, now has an option (-d) for measuring inter-CPU latencies in counter ticks.

AccessEnum v1.35
This update to AccessEnum, a tool that summarizes account permissions on files and folders, fixes a version number mismatch in its version information.

BgInfo v4.32
This update to BgInfo, a tool for displaying system information on screen desktop, correctly reports Windows 11 Insider versions.

NotMyFault v4.21
This update to NotMyFault, a tool used to crash, hang, and cause kernel memory leaks on Windows, now works on ARM64 systems.


Take a walk through the "Security Garden" -- Where Everything is Coming up Roses!

Remember - A day without laughter is a day wasted.
May the wind sing to you and the sun rise in your heart.

Corrine

From ZoomIt v6.1

ZoomIt

This update to ZoomIt, a screen magnification and annotation tool, adds right-justified text input, an option to scale the screen recordings resolution, and usability fixes.


Take a walk through the "Security Garden" -- Where Everything is Coming up Roses!

Remember - A day without laughter is a day wasted.
May the wind sing to you and the sun rise in your heart.

Corrine

From ZoomIt v6.11

ZoomIt

This update to ZoomIt fixes a crash with right-justified text input and improves multiline text handling.


Take a walk through the "Security Garden" -- Where Everything is Coming up Roses!

Remember - A day without laughter is a day wasted.
May the wind sing to you and the sun rise in your heart.

Corrine

From Process Explorer v17.0, Handle v5.0, Process Monitor v3.92, and Sysmon v14.11

Process Explorer
This update to Process Explorer, an advanced process, DLL and handle viewing utility, adds dark theme support, multipane view in the main window with a new threads pane, startup performance optimization and more.

Handle
This update to Handle, a tool that displays information about open handles for any process in the system, adds CSV output with a new -v switch and has an option to print the granted access mask with -g.

Process Monitor
This update to Process Monitor, a utility for observing in real time file system, Registry, and process or thread activity, adds a command-line option for setting the filter driver's altitude.

Sysmon
This update to Sysmon, an advanced host monitoring tool, fixes a bug preventing FileDeleteDetected events reporting and adds support for ARM64.


Take a walk through the "Security Garden" -- Where Everything is Coming up Roses!

Remember - A day without laughter is a day wasted.
May the wind sing to you and the sun rise in your heart.

Corrine

From ProcDump v11.0, ProcDump 1.3 for Linux, and Process Explorer v17.01

ProcDump v11.0
This update to ProcDump, a command-line utility for generating memory dumps from running processes, adds ModuleLoad/Unload and Thread Create/Exit triggers, removes Internet Explorer JavaScript support, and improves descriptive text messages.

ProcDump 1.3 for Linux
This update to ProcDump for Linux changes the CLI interface to match ProcDump for Windows, and adds a new process group trigger (-pgid) to allow monitoring all processes running in the same process group.

Process Explorer v17.01
This update to Process Explorer fixes a crash when right-clicking an empty area of the lower pane threads tab and improves menu rendering.


Take a walk through the "Security Garden" -- Where Everything is Coming up Roses!

Remember - A day without laughter is a day wasted.
May the wind sing to you and the sun rise in your heart.

Corrine

From Process Explorer v17.02 and Sysmon v14.12

Process Explorer v17.02
This update to Process Explorer fixes two bugs that can lead to crashes and another that leads to an unexpected dialog in an error case.
 
Sysmon v14.12
This update to Sysmon fixes a bug related to volumes without file system security.


Take a walk through the "Security Garden" -- Where Everything is Coming up Roses!

Remember - A day without laughter is a day wasted.
May the wind sing to you and the sun rise in your heart.

Corrine

From Active Directory Explorer v1.52, Contig v1.82, and Sysmon v14.13

Active Directory Explorer v1.52
This update to Active Directory Explorer, an advanced Active Directory viewer and editor, fixes a crash caused by searching for strings in a snapshot longer than object names.

Contig v1.82
This update to Contig, a single-file defragmenter, adds safe DLL loading and support for long command-line arguments.

Sysmon v14.13
This update to Sysmon addresses CVE-2022-41120 by ensuring the archive directory has permissions restricted to the system account.


Take a walk through the "Security Garden" -- Where Everything is Coming up Roses!

Remember - A day without laughter is a day wasted.
May the wind sing to you and the sun rise in your heart.