LiveKd v5.4
This update to Livekd, a tool that enables live kernel debugging for Windows systems and Hyper-V guest Windows virtual machines, now includes live dump support for generating fast-snapshot crash-consistent kernel dump files using support introduced in Windows 8.1 and Windows Server 2012 R2.
Autoruns v13.2
In addition to bug fixes to CSV and XML output, Autorunsc introduces import-hash reporting, and Autoruns now excludes command-line and other host processes from the Microsoft and Windows filters.
Sigcheck v2.2
This release of Sigcheck, a command-line tool that reports file version, code signing, and hash information, introduces import-hash reporting and support for files larger than 4 GB.
Process Explorer v16.05
Process Explorer now includes a Protection column that shows process protection status.
Full Suite - https://technet.microsoft.com/en-us/sysinternals/bb842062
Updated: March 10, 2015
--
Gladiator Security Forum
↧