I always put process explorer on all of my machines. It puts the task manager to shame. Microsoft should be embarrassed. Psexec is another awesome tool. I have just recently started using process monitor and the information you can get from it is just awesome.
On Thu, Feb 11, 2010 at 1:34 PM, Butturini, Russell < [email protected]> wrote: > Absolutely. Sysinternals tools are the BEST for forensics, > troubleshooting, systems management…Anything under the sun! I use psinfo, > psloggedon, pslist,listdlls, and logonsessions in my forensics toolkit, and > use process explorer as well when investigating malware. > > > ------------------------------ > > *From:* [email protected] [mailto: > [email protected]] *On Behalf Of *Tyler Robinson > *Sent:* Thursday, February 11, 2010 12:27 PM > *To:* PaulDotCom Security Weekly Mailing List > *Subject:* Re: [Pauldotcom] Sysinternals > > > > From both a white and grey hat perspective I love erd commander and pstools > especially psexec I would be lost without psexec. > > On Feb 11, 2010 11:23 AM, "Josh Ciceraro" <[email protected]> wrote: > > Hello, > > I was wondering if anyone here in the group uses any of the sysinternals > tools and what are some favorites. I really like autoruns, process > explorer, and process monitor. Disk2Vhd seems pretty promising, though I > haven't played with it yet. > > -- > kaizoku Josh > > _______________________________________________ > Pauldotcom mailing list > [email protected] > http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom > Main Web Site: http://pauldotcom.com > > > ****************************************************************************** > This email contains confidential and proprietary information and is not to be > used or disclosed to anyone other than the named recipient of this email, > and is to be used only for the intended purpose of this communication. > ****************************************************************************** > > > _______________________________________________ > Pauldotcom mailing list > [email protected] > http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom > Main Web Site: http://pauldotcom.com > -- kaizoku Josh
_______________________________________________ Pauldotcom mailing list [email protected] http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
