Tip of the Day: Updated SysInternals tools

Today’s Tip…

A number of SysInternals tools were recently updated. For those of you that use these tools on a regular basis, you might want to grab these updates and add them to your respective collections.

AccessChk v5.2: AccessChk, a command line utility for dumping the effective permissions and security descriptors for files, registrykeys, processes, tokens, object manager objects, now prefixes Windows 8 application container SIDs with the word “Package”, and includes several minor bug fixes.

This release of AccessChk, a security command-line utility that reports the effective access and permissions of files, registry keys, processes, and more, adds support for file and printer shares. In addition, it adds filtering options for viewing accesses related to specified accounts and now includes the System Access Control List (SACL) when it dumps security descriptors

Procdump v6.0: Procdump is an advanced utility for capturing process memory dumps based on a variety of triggers including CPU usage, memory usage, performance counter values, and exceptions. Version 6.0 is a major upgrade that adds the ability to specify multiple filters, attach to a process by service name, and display/filter on the message text of a CLR or JScript exception.

RAMMap v1.30: RAMMap is a graphic utility that shows the breakdown of physical memory usage across different dimensions. This release fixes a bug that could cause a crash when accessing the cached files page when a cached file’s name exceeded a certain length.

This update also fixes a bug that caused RAMMap to fail on Windows 8.

Strings v2.52: This update to Strings, a command-line utility that prints a file’s embedded Unicode and ASCII strings, fixes a signed file offset printing bug.

This release fixes a bug that prevented the previous one from running on Windows XP.