Sysinternals Suite Published
25 Jan 2007I found out that the Sysinternals Suite has been published by Mark Russinovich via MSDN Blogs, ironically there’s no mention on his blog about this release. Anyway, Sysinternals stuff has always been good, but the Suite page doesn’t list the contents of the download. It only contains this vague description:
_This file contains the individual troubleshooting tools and help files. It does not contain non-troubleshooting tools like the BSOD Screen Saver or NotMyFault._ > >
So in the interest of community involvement, for your reading pleasure, here are the contents of the Suite:
- accesschk: return access rights by user or group
- accessenum: shows you who has access to what
- adrestore: undelete active directory objects
- autologon: autologon utility
- autoruns: view system startup info in a gui
- autorunsc: command line version of the above
- bginfo: create backgrounds with system info
- cacheset: control the Cache Managers working set size
- clockres: find timer resolution
- contig: by file defragmenter
- ctrl2cap: makes the capslock a control key
- dbgview: display DbgPrint calls
- diskext: Display volume disk-mappings
- diskmnt: diskmonitor for NT
- diskmon: monitor disk access
- diskview: disk sector utility with GUI
- du: disk usage
- efsdump: encrypted file information
- filemon: monitor file access
- handle: show open file handles
- hex2dec: convert hex to decimal
- junction: Create NTFS symlinks
- ldmdump: dump the logical disk managers database
- listdlls: show loaded dlls
- livekd: realtime kernel debug
- loadord: display device load order
- logonsessions: lists active logins
- movefile: move inuse files on next reboot
- newsid: change a computer SID
- ntfsinfo: file system info
- pagedfrg: defrag page file and registry.
- pendmoves: show file moves scheduled for next reboot
- physmem: physical memory viewer
- pipelist: view current pipes
- portmon: Monitor port activity
- procexp: Process Explorer, monitor running proccess
- ProcFeatures: process information
- Procmon: monitor file system, registry, and processes
- psexec: execute processes remotely
- psfile: show remotely opened files
- psgetsid: display SID of computer or user
- psinfo: get system info
- pslist: process info
- pskill: kill processes
- psloggedon: whose logged on?
- psloglist: dump event logs
- pspasswd: change passwords
- psservice: control services
- psshutdown: shutdown/reboot a computer
- pssuspend: suspend a process
- regdelnull: deletes nondeletedable registry keys
- reghide: creates hidden registry keys
- regjump: go straight to a registry key
- regmon: monitor registry activity
- rootkitrevealer: scan for rootkits
- sdelete: DoD compliant secure delete
- shareenum: scan file shares for security holes
- sigcheck: File version and signature checker
- streams: view alternate NTFS streams
- strings: strings utility
- sync: flush data to disk
- tcpvcon: console version of tcpview
- tcpview: view open sockets
- volumeid: set labels on FAT or NTFS drives
- whois: whois service
- winobj: object manager viewer
- zoomit: zoom and draw on the screen
These are all great utilities, now that you know what’s in it, grab the Suite from Microsoft!