The Windows Sysinternals was updated yesterday. Four modules have received an update. TCPView 4.0 (as the second module with dark mode), PsExec 2.33, WinObj 3.02 and Sysmon 02/13.
Of course, the package also contains other modules that can help you troubleshoot or diagnose Windows systems. Among other things, autoruns. A tool that can not only display the programs in the autostart but also the services and entries in the registry.
1. TCPView 4.0: This major update to TCPView adds flexible filtering and search support, and now shows the Windows service that a specific endpoint is assigned to. It is also the second Sysinternals tool to use the new theme engine with dark mode.
2. PsExec 2.33: This update to PsExec defuses named pipe squatting attacks that an attacker can exploit to intercept credentials or gain system privileges. The -i switch is now required to run processes interactively; B. with redirected IO.
3. WinObj 3.02: This WinObj version fixes a bug that could lead to a crash.
4. Sysmon 02/13: This Sysmon update fixes a crash that could be caused by file delete events, corrects the "is any" rule predicate and adds several performance improvements when parsing the configuration.
Info and download
- docs.microsoft.com/sysinternals
- docs.microsoft.com/sysinternals/downloads Here you will find Systernals as a suite, or the 72 individual modules.
0 Comments