-
-
[转帖]Sysinternals Suite (2017-09-12)
-
发表于:
2017-9-17 09:11
1878
-
[转帖]Sysinternals Suite (2017-09-12)
Sysinternals Suite (2017-09-12)
Changes in (2017-09-12):
Sysmon v6.1
This update to Sysmon, a background monitor that records activity to the event log for use in security incident detection and forensics, adds monitoring of WMI filters and consumers, an autostart mechanism commonly used by malware, and fixes a bug in image load filtering.
Process Monitor v3.4
Process Monitor, a file system registry, process and network real-time monitor, now includes a /runtime switch for terminating monitoring after a specified amount of time, when in hexadecimal mode shows process tree process IDs in hexadecimal, and fixes a bug in automated boot log conversion.
Autotuns v13.8
This release of Autoruns, a utility for viewing and managing autostart execution points (ASEPs), adds additional autostart entry points, has asynchronous file saving, fixes a bug parsing 32-bit paths on 64-bit Windows, shows the display name for drivers and services, and fixes a bug in offline Virus Total scanning.
AccessChk v6.11
This update to AccessChk, a command-line utility that reports effective access and can dump access control lists, adds a cache to improve queries that enumerate multiple objects, and has the -s switch start container enumeration at the specified container when -d is specified.
_http://live.sysinternals.com/Files/SysinternalsSuite.zip
[课程]FART 脱壳王!加量不加价!FART作者讲授!
