共用方式為


LeoPonti Blog

Updates: AccessChk v5.1, Autoruns v.11.33, Coreinfo v3.05, Whois v1.1

AccessChk v5.1: This update to AccessChk, a command-line utility that shows the security settings...

Author: LeoPonti Date: 08/03/2012

Update: ZoomIt v4.31

ZoomIt v4.31: This release fixes a bug that caused ZoomIt to sometimes report an error when...

Author: LeoPonti Date: 07/18/2012

Updates: Handle v3.5, Process Explorer v15.22, Process Monitor v3.03, RAMMap v1.21, ZoomIt v4.3

Handle v3.5: This update to Handle, a command-line utility that lists open handles, uses the most...

Author: LeoPonti Date: 07/16/2012

The Case of the Veeerrry Slow Logons

This case is my favorite kind of case, one where I use my own tools to solve a problem affecting me...

Author: LeoPonti Date: 07/02/2012

Updates: Autoruns v11.32, Process Explorer v15.21, Process Monitor v3.02, PSKill v1.15, RAMMap v1.2

Autoruns v11.32: This update fixes a bug that prevented Autoruns from correctly elevating when the...

Author: LeoPonti Date: 06/28/2012

Announcing Trojan Horse, the Novel!

Many of you have read Zero Day , my first novel. It’s a cyberthriller that features Jeff Aiken and...

Author: LeoPonti Date: 05/08/2012

The Case of My Mom’s Broken Microsoft Security Essentials Installation

As a reader of this blog I suspect that you, like me, are the IT support staff for your family and...

Author: LeoPonti Date: 01/04/2012

The Case of the Installer Service Error

This case unfolds with a network administrator charged with the rollout of the Microsoft Windows...

Author: LeoPonti Date: 11/28/2011

Fixing Disk Signature Collisions

Disk cloning has become common as IT professionals virtualize physical servers using tools like...

Author: LeoPonti Date: 11/08/2011

The Case of the Mysterious Reboots

This case opens when a Sysinternals power user, who also works as a system administrator at a large...

Author: LeoPonti Date: 10/03/2011

Troubleshooting with the New Sysinternals Administrator’s Reference

Aaron Margosis and I are thrilled to announce that the long awaited, and some say long overdue,...

Author: LeoPonti Date: 07/18/2011

Analyzing a Stuxnet Infection with the Sysinternals Tools, Part 3

In the first post of this series , I used Autoruns , Process Explorer and VMMap to statically...

Author: LeoPonti Date: 05/10/2011

The Zero Day Book Trailer

I just got back the finished version of the video trailer for my new cyber thriller Zero Day , which...

Author: LeoPonti Date: 05/03/2011

Analyzing a Stuxnet Infection with the Sysinternals Tools, Part 2

In Part 1 I began my investigation of an example infection of the infamous Stuxnet worm with the...

Author: LeoPonti Date: 04/20/2011

Analyzing a Stuxnet Infection with the Sysinternals Tools, Part 1

Though I didn’t realize what I was seeing, Stuxnet first came to my attention on July 5 last summer...

Author: LeoPonti Date: 03/30/2011

Zero Day is Here!

I’m excited to announce that my first novel, a cyber thriller entitled Zero Day , is now available...

Author: LeoPonti Date: 03/15/2011

The Case of the Unusable System

This post continues in the malware hunting theme of the last couple of posts as Zero Day...

Author: LeoPonti Date: 03/14/2011

The Case of the Sysinternals-Blocking Malware

Continuing the theme of focusing on malware-related cases (last week I posted The Case of the...

Author: LeoPonti Date: 03/08/2011

The Case of the Malicious Autostart

Given that my novel, Zero Day , will be published in a few weeks and is based on malware’s use as a...

Author: LeoPonti Date: 02/26/2011

The Cases of the Blue Screens: Finding Clues in a Crash Dump and on the Web

My last couple of posts have looked at the lighter side of blue screens by showing you how to...

Author: LeoPonti Date: 01/29/2011

Announcing Zero Day, the Novel!

You’ve seen the news if you’re my friend on Facebook , follow me on Twitter , or subscribe to the...

Author: LeoPonti Date: 01/23/2011

“Blue Screens” in Designer Colors with One Click

My last blog post described how to use local kernel debugging to change the colors of the Windows...

Author: LeoPonti Date: 01/11/2011

A Bluescreen By Any Other Color

Note: for an easier way to customize the blue screen’s colors, see my next blog post, “ Blue Screens...

Author: LeoPonti Date: 12/14/2010

The Case of the Slow Project File Opens

If you’ve seen one of my Case of the Unexplained presentations (like the one I delivered at TechEd...

Author: LeoPonti Date: 12/07/2010

LiveKd for Virtual Machine Debugging

When Dave Solomon and I were writing the 3 rd edition of the Windows Internals book series Inside...

Author: LeoPonti Date: 10/14/2010

<Previous