|
|
Logiciels de Sysinternals
Logiciels de Sysinternals (Contig, Filemon, Autoruns...)
Sysinternals
- Sysinternals Utilities: Security
Utilitaires de configuration et de gestion de la sécurité, comprenant rootkit et programmes de détection de logiciels espions.
- AccessChk
This tool shows you the accesses the user or group you specify has to files, Registry keys or Windows services.
- AccessEnum
This simple yet powerful security tool shows you who has what access to directories, files and Registry keys on your systems. Use it to find holes in your permissions.
- Autologon
Bypass password screen during logon.
- Autoruns
See what programs are configured to startup automatically when your system boots and you login. Autoruns also shows you the full list of Registry and file locations where applications can configure auto-start settings.
- LogonSessions
List active logon sessions
- NewSID
Learn about the computer SID problem everybody has been talking about and get a free computer SID changer, NewSID.
- Process Explorer
Find out what files, registry keys and other objects processes have open, which DLLs they have loaded, and more. This uniquely powerful utility will even show you who owns each process.
- PsExec
Execute processes with limited-user rights.
- PsLoggedOn
Show users logged on to a system
- PsLogList
Dump event log records.
- PsTools
The PsTools suite includes command-line utilities for listing the processes running on local or remote computers, running processes remotely, rebooting computers, dumping event logs, and more.
- RootkitRevealer
Scan your system for rootkit-based malware
- SDelete
Securely overwrite your sensitive files and cleanse your free space of previously deleted files using this DoD-compliant secure delete program.
- ShareEnum
Scan file shares on your network and view their security settings to close security holes.
- Sigcheck
Dump file version information and verify that images on your system are digitally signed.
- Sysinternals Utilities: File & Disk
Utilitaires permettant de consulter et de surveiller l'accès et l'usage des fichiers et disques.
- AccessChk
This tool shows you the accesses the user or group you specify has to files, Registry keys or Windows services.
- AccessEnum
This simple yet powerful security tool shows you who has what access to directories, files and Registry keys on your systems. Use it to find holes in your permissions.
- CacheSet
CacheSet is a program that allows you to control the Cache Manager's working set size using functions provided by NT. It's compatible with all versions of NT.
- Contig
Wish you could quickly defragment your frequently used files? Use Contig to optimize individual files, or to create new files that are contiguous.
- DiskExt
Display volume disk-mappings
- Diskmon
This utility captures all hard disk activity or acts like a software disk activity light in your system tray.
- DiskView
Graphical disk sector utility
- Du
View disk usage by directory
- EFSDump
View information for encrypted files
- Filemon
This monitoring tool lets you see all file system activity in real-time.
- Junction
Create Win2K NTFS symbolic links
- LDMDump
Dump the contents of the Logical Disk Manager's on-disk database, which describes the partitioning of Windows 2000 Dynamic disks.
- MoveFile
Schedule file rename and delete commands for the next reboot. This can be useful for cleaning stubborn or in-use malware files.
- NTFSInfo
Use NTFSInfo to see detailed information about NTFS volumes, including the size and location of the Master File Table (MFT) and MFT-zone, as well as the sizes of the NTFS meta-data files.
- PageDefrag
Defragment your paging files and Registry hives!
- PendMoves
See what files are scheduled for delete or rename the next time the system boots.
- Process Monitor
Monitor file system, Registry, process, thread and DLL activity in real-time.
- PsFile
See what files are opened remotely
- PsTools
The PsTools suite includes command-line utilities for listing the processes running on local or remote computers, running processes remotely, rebooting computers, dumping event logs, and more.
- SDelete
Securely overwrite your sensitive files and cleanse your free space of previously deleted files using this DoD-compliant secure delete program.
- ShareEnum
Scan file shares on your network and view their security settings to close security holes.
- Sigcheck
Dump file version information and verify that images on your system are digitally signed.
- Streams
Reveal NTFS alternate streams
- Sync
Flush cached data to disk
- VolumeId
Set Volume ID of FAT or NTFS drives
- Sysinternals Utilities: Processus
Utilitaires permettant de voir sous le capot ce que font les processus et les ressources qu'ils consomment.
- Autoruns
See what programs are configured to startup automatically when your system boots and you login. Autoruns also shows you the full list of Registry and file locations where applications can configure auto-start settings.
- Filemon
This monitoring tool lets you see all file system activity in real-time.
- Handle
This handy command-line utility will show you what files are open by which processes, and much more.
- ListDLLs
List all the DLLs that are currently loaded, including where they are loaded and their version numbers. Version 2.0 prints the full path names of loaded modules.
- Portmon
Monitor serial and parallel port activity with this advanced monitoring tool. It knows about all standard serial and parallel IOCTLs and even shows you a portion of the data being sent and received. Version 3.x has powerful new UI enhancements and advanced filtering capabilities.
- Process Explorer
Find out what files, registry keys and other objects processes have open, which DLLs they have loaded, and more. This uniquely powerful utility will even show you who owns each process.
- Process Monitor
Monitor file system, Registry, process, thread and DLL activity in real-time.
- PsExec
Execute processes remotely.
- PsKill
Terminate local or remote processes.
- PsList
Show information about processes and threads.
- PsService
View and control services.
- PsSuspend
Suspend and resume processes.
- PsTools
The PsTools suite includes command-line utilities for listing the processes running on local or remote computers, running processes remotely, rebooting computers, dumping event logs, and more.
- Regmon
This monitoring tool lets you see all Registry activity in real-time.
- Utilitaires Sysinternals : Réseau
Outils réseau allant de moniteurs de connexion à des analyseurs de sécurité des ressources.
- AdRestore
Restaurez des objets Active Directory Server 2003
- PsFile
Vérifiez quels sont les fichiers ouverts à distance
- PsTools
La suite PsTools inclut des utilitaires de lignes de commande pour répertorier les processus exécutés sur des ordinateurs locaux ou distants, exécuter des processus à distance, redémarrer des ordinateurs, vider des journaux d'événements, entre autres.
- ShareEnum
Analysez les partages de fichiers sur votre réseau et affichez leurs paramètres de sécurité pour combler les failles de sécurité.
- TCPView
Activez l'afficheur des lignes de commandes de sockets actifs.
- Whois
Vérifiez à qui appartient une adresse Internet.
- Sysinternals Utilities: System Information
Utilitaires permettant d'examiner l'utilisation et la configuration des ressources système.
- Autoruns
See what programs are configured to startup automatically when your system boots and you login. Autoruns also shows you the full list of Registry and file locations where applications can configure auto-start settings.
- ClockRes
View the resolution of the system clock, which is also the maximum timer resolution
- Filemon
This monitoring tool lets you see all file system activity in real-time.
- Handle
This handy command-line utility will show you what files are open by which processes, and much more
- LiveKd
Use Microsoft kernel debuggers to examine a live system.
- LoadOrder
See the order in which devices are loaded on your WinNT/2K system
- LogonSessions
List the active logon sessions on a system
- PendMoves
Enumerate the list of file rename and delete commands that will be executed the next boot
- Process Explorer
Find out what files, registry keys and other objects processes have open, which DLLs they have loaded, and more. This uniquely powerful utility will even show you who owns each process.
- Process Monitor
Monitor file system, Registry, process, thread and DLL activity in real-time.
- ProcFeatures
This applet reports processor and Windows support for Physical Address Extensions and No Execute buffer overflow protection.
- PsInfo
Obtain information about a system
- PsLoggedOn
Show users logged on to a system
- PsTools
The PsTools suite includes command-line utilities for listing the processes running on local or remote computers, running processes remotely, rebooting computers, dumping event logs, and more.
- Regmon
This monitoring tool lets you see all Registry activity in real-time.
- Winobj
The ultimate Object Manager namespace viewer is here.
- Sysinternals Utilities: Divers
Série de divers utilitaires comprenant un économiseur d'écran, un assistant de présentation et un outil de débogage.
- AdRestore
Restore tombstoned Active Directory objects in Server 2003 domains.
- Autologon
Bypass password screen during logon.
- BgInfo
This fully-configurable program automatically generates desktop backgrounds that include important information about the system including IP addresses, computer name, network adapters, and more.
- BlueScreen
This screen saver not only accurately simulates Blue Screens, but simulated reboots as well (complete with CHKDSK), and works on Windows NT 4, Windows 2000, Windows XP, Server 2003 and Windows 9x.
- Ctrl2cap
This is a kernel-mode driver that demonstrates keyboard input filtering just above the keyboard class driver in order to turn caps-locks into control keys. Filtering at this level allows conversion and hiding of keys before NT even "sees" them. Ctrl2cap also shows how to use NtDisplayString() to print messages to the initialization blue-screen.
- DebugView
Another first from Sysinternals: This program intercepts calls made to DbgPrint by device drivers and OutputDebugString made by Win32 programs. It allows for viewing and recording of debug session output on your local machine or across the Internet without an active debugger.
- Hex2dec
Convert hex numbers to decimal and vice versa.
- PsTools
The PsTools suite includes command-line utilities for listing the processes running on local or remote computers, running processes remotely, rebooting computers, dumping event logs, and more.
- PsLogList
Dump event log records.
- RegDelNull
Scan for and delete Registry keys that contain embedded null-characters that are otherwise undeleteable by standard Registry-editing tools.
- Regjump
Jump to the registry path you specify in Regedit.
- Strings
Search for ANSI and UNICODE strings in binary images.
- ZoomIt
Presentation utility for zooming and drawing on the screen.
|
|
|