LeoPonti Blog
Updates: AccessChk v5.1, Autoruns v.11.33, Coreinfo v3.05, Whois v1.1
AccessChk v5.1: This update to AccessChk, a command-line utility that shows the security settings...
Author: LeoPonti Date: 08/03/2012
Update: ZoomIt v4.31
ZoomIt v4.31: This release fixes a bug that caused ZoomIt to sometimes report an error when...
Author: LeoPonti Date: 07/18/2012
Updates: Handle v3.5, Process Explorer v15.22, Process Monitor v3.03, RAMMap v1.21, ZoomIt v4.3
Handle v3.5: This update to Handle, a command-line utility that lists open handles, uses the most...
Author: LeoPonti Date: 07/16/2012
The Case of the Veeerrry Slow Logons
This case is my favorite kind of case, one where I use my own tools to solve a problem affecting me...
Author: LeoPonti Date: 07/02/2012
Updates: Autoruns v11.32, Process Explorer v15.21, Process Monitor v3.02, PSKill v1.15, RAMMap v1.2
Autoruns v11.32: This update fixes a bug that prevented Autoruns from correctly elevating when the...
Author: LeoPonti Date: 06/28/2012
Announcing Trojan Horse, the Novel!
Many of you have read Zero Day , my first novel. It’s a cyberthriller that features Jeff Aiken and...
Author: LeoPonti Date: 05/08/2012
The Case of My Mom’s Broken Microsoft Security Essentials Installation
As a reader of this blog I suspect that you, like me, are the IT support staff for your family and...
Author: LeoPonti Date: 01/04/2012
The Case of the Installer Service Error
This case unfolds with a network administrator charged with the rollout of the Microsoft Windows...
Author: LeoPonti Date: 11/28/2011
Fixing Disk Signature Collisions
Disk cloning has become common as IT professionals virtualize physical servers using tools like...
Author: LeoPonti Date: 11/08/2011
The Case of the Mysterious Reboots
This case opens when a Sysinternals power user, who also works as a system administrator at a large...
Author: LeoPonti Date: 10/03/2011
Troubleshooting with the New Sysinternals Administrator’s Reference
Aaron Margosis and I are thrilled to announce that the long awaited, and some say long overdue,...
Author: LeoPonti Date: 07/18/2011
Analyzing a Stuxnet Infection with the Sysinternals Tools, Part 3
In the first post of this series , I used Autoruns , Process Explorer and VMMap to statically...
Author: LeoPonti Date: 05/10/2011
The Zero Day Book Trailer
I just got back the finished version of the video trailer for my new cyber thriller Zero Day , which...
Author: LeoPonti Date: 05/03/2011
Analyzing a Stuxnet Infection with the Sysinternals Tools, Part 2
In Part 1 I began my investigation of an example infection of the infamous Stuxnet worm with the...
Author: LeoPonti Date: 04/20/2011
Analyzing a Stuxnet Infection with the Sysinternals Tools, Part 1
Though I didn’t realize what I was seeing, Stuxnet first came to my attention on July 5 last summer...
Author: LeoPonti Date: 03/30/2011
Zero Day is Here!
I’m excited to announce that my first novel, a cyber thriller entitled Zero Day , is now available...
Author: LeoPonti Date: 03/15/2011
The Case of the Unusable System
This post continues in the malware hunting theme of the last couple of posts as Zero Day...
Author: LeoPonti Date: 03/14/2011
The Case of the Sysinternals-Blocking Malware
Continuing the theme of focusing on malware-related cases (last week I posted The Case of the...
Author: LeoPonti Date: 03/08/2011
The Case of the Malicious Autostart
Given that my novel, Zero Day , will be published in a few weeks and is based on malware’s use as a...
Author: LeoPonti Date: 02/26/2011
The Cases of the Blue Screens: Finding Clues in a Crash Dump and on the Web
My last couple of posts have looked at the lighter side of blue screens by showing you how to...
Author: LeoPonti Date: 01/29/2011
Announcing Zero Day, the Novel!
You’ve seen the news if you’re my friend on Facebook , follow me on Twitter , or subscribe to the...
Author: LeoPonti Date: 01/23/2011
“Blue Screens” in Designer Colors with One Click
My last blog post described how to use local kernel debugging to change the colors of the Windows...
Author: LeoPonti Date: 01/11/2011
A Bluescreen By Any Other Color
Note: for an easier way to customize the blue screen’s colors, see my next blog post, “ Blue Screens...
Author: LeoPonti Date: 12/14/2010
The Case of the Slow Project File Opens
If you’ve seen one of my Case of the Unexplained presentations (like the one I delivered at TechEd...
Author: LeoPonti Date: 12/07/2010
LiveKd for Virtual Machine Debugging
When Dave Solomon and I were writing the 3 rd edition of the Windows Internals book series Inside...
Author: LeoPonti Date: 10/14/2010