Introduction to Sysinternals Suite Tools

Enterprise 2023-04-08 18:38:08 views: null

1 Introduction

Make a record, the official download address:
https://docs.microsoft.com/en-us/sysinternals/downloads/sysinternals-suite

It includes commonly used tools for windows malware analysis

  1. Autoruns.exe: View the auto-start configuration of each software
  2. procdump.exe: dynamic unpacking (dump exe directly from memory)
  3. procexp.exe: view (and end) the details of the process, and also directly view the strings of the process in memory
  4. tcpview.exe: view information about TCP communication

A brief introduction to more tools is given in Reference 1.

2. Reference

    1. https://blog.51cto.com/zhaoqingqing/3146707

Guess you like

Origin blog.csdn.net/ybdesire/article/details/126649175
Recommended
TIOBE May list: Fortran “resurrected” into Top 10
GCC 14.1 released
Ranking
B. Little Girl and Game【1300 / 回文字符串 博弈论】
CIKERS Shane 20190613
"Javascript advanced programming" study notes - the constructor and prototype
beeline hiveserver2 start
springboot - Automatically backup mysql data every day
Data Storage Full Solution--Detailed Persistence Technology
Detailed Explanation of Spring Web MVC DispatcherServlet—Official Original
TCP / IP protocol layers structure and function
Command type literal pos: unknown; Fallback type literal pos: unknown] with root cause
Design of multifunctional curtain controller with indoor anti-theft alarm
Daily
More
2024-05-08(18)
2024-05-07(34)
2024-05-06(6)
2024-05-05(0)
2024-05-04(18)
2024-05-03(8)
2024-05-02(0)
2024-05-01(4)
2024-04-30(36)
2024-04-29(5)

Code World

© 2018 codetd.com