Updates: release of The Windows Sysinternals Administrator’s Reference, Process Explorer v15, Listdlls v3.1, new utility Findlinks v1, and Mark to Speak at Black Hat US 2011

The Windows Sysinternals Administrator’s Reference: We are excited and proud to announce the release of the official Sysinternals book, The Windows Sysinternals Administrator’s Reference, from Microsoft Press. Written by Sysinternals founder and tool author Mark Russinovich, and Windows expert Aaron Margosis, the book is over 450 pages and covers all 70+ tools in detail, with…


Updates: VMMap v3.1, RAMMap v1.11, Handle v3.46, Process Explorer v14.12 and Mark’s Blog: Analyzing a Stuxnet Infection with the Sysinternals Tools, Part 3

? VMMap v3.1: VMMap, a process virtual and physical memory analyzer, now shows the ASLR status of images and reports “unusable” virtual memory regions. RAMMap v1.11: This update to RAMMap, a system memory usage analyzer, adds command-line options for loading files and exporting scans, creates a file association and fixes several bugs. Handle v3.46: This update…


Updates: ZoomIt v4.2, Process Explorer v14.11, and ProcDump v3.04

ZoomIt v4.2: This update to ZoomIt, a screen magnification and annotation utility, now adjusts the drawing pen size when you enter drawing mode from live zoom to match the static zoom pen size. Process Explorer v14.11: Process Explorer v14.11 includes the ability to configure network and disk activity icons in the tray. ProcDump v3.04: This update…


Updates: Process Explorer v14.1, VMMap v3.03, ProcDump v3.03, and Zero Day is now Available!

Zero Day is Now Available! Mark’s first novel, a cyberthriller called Zero Day, is now available for order. If you like Sysinternals tools, Mark’s Case of the Unexplained blog posts, Michael Crichton and Tom Clancy, you’re sure to like Zero Day. Process Explorer v14.1: This update to Process Explorer introduces cycle-based CPU usage on Windows 7,…


Updates: Process Explorer v14.01, Autoruns v10.05

Process Explorer v14.01: This update fixes a bug related to the DLL view and adds a tab to the new system information dialog, Summary, that displays all the performance graphs together. Autoruns v10.05: This Autoruns update adds ActiveSync autostart locations, fixes a bug in that prevented offline scanning from working in some cases, and fixes…


Update: Process Explorer v14

Process Explorer v14: This major update to Process Explorer adds a slew of enhancements and new functionality including network and disk monitoring, an improved multi-tab system information dialog, additional memory statistics, a new column that shows aggregate CPU usage for a tree of processes, improved DLL scanning performance and accuracy, command-lines in process tree tooltips,…


Update: Process Explorer v12.03

Process Explorer v12.03: This update revs the driver name so that it is used even when the previous driver is already loaded.


Updates: Process Monitor v2.9, Process Explorer v12.02, Testlimit v5.02 | A new Mark’s blog post and Mark to speak at the Windows Summit and TechEd US

Process Monitor v2.9: This update to Process Monitor adds translations for more error codes, the ability to disable individual filter entries, and a debugging API so that developers can insert debug output into the Process Monitor event stream (John Robbins has implemented helper classes for generating process monitor debug output from native and managed applications)….


Updates: Process Explorer v12.01

Process Explorer v12.01: This update fixes a bug that prevented DEP status being shown on Windows XP and the threads page of the process properties dialog from showing service names on Windows Vista.