For hardcode forensics you would probably want to use other tools. Process Explorer and Process Monitor are two software solutions from the Sysinternals bundle which allow to look very deeply into what is happening in your Windows system. Apparently someone with a strong technical background in this C-level position. Moreover, it comes from a trusted source (Microsoft) and does not require too much training.įun fact: The original developer of Sysinternals – Mark Russinovich – is now CTO for Microsoft Azure. Really all of the included tools (of the many I tried so far) are very helpful for specific purposes and it does not come as a surprise that Microsoft bought the previously independent company “Winternals” years ago.įor my work as Security Consultant I also like to recommend these tools to my clients because the software is self-contained, i.e. The Sysinternals suite is a toolkit that can be downloaded for free from the Microsoft website.
0 kommentar(er)
