Update: LiveKd v5.4, Autoruns v13.2, Sigcheck v2.2, Process Explorer v16.05

LiveKd v5.4
This update to Livekd, a tool that enables live kernel debugging for Windows systems and Hyper-V guest Windows virtual machines, now includes ‘live dump’ support for generating fast-snapshot crash-consistent kernel dump files using support introduced in Windows 8.1 and Windows Server 2012 R2.

Autoruns v13.2
In addition to bug fixes to CSV and XML output, Autorunsc introduces import-hash reporting, and Autoruns now excludes command-line and other host processes from the Microsoft and Windows filters.

Sigcheck v2.2
This release of Sigcheck, a command-line tool that reports file version, code signing, and hash information, introduces import-hash reporting and support for files larger than 4 GB.

Process Explorer v16.05
Process Explorer now includes a Protection column that shows process protection status.