Sysinternals Live

Sysinternals Live is a service that enables you to execute Sysinternals tools directly from the Web without hunting for and manually downloading them. Simply enter a tool’s Sysinternals Live path into Windows Explorer or a command prompt as http://live.sysinternals.com/<toolname> or  \\live.sysinternals.com\tools\<toolname>.

You can view the entire Sysinternals Live tools directory in a browser at http://live.sysinternals.com.

What’s New

What’s New (January 19, 2010)

• Paul Thurrott Interviews Mark on Windows 7 Development
  Check out Mark’s interview with Windows IT Pro Magazine columnist Paul Thurrott, where he discusses some of the thinking behind Windows 7.
• Mark’s Blog: Case of the Slow Logon
  Mark’s latest blog post documents a troubleshooting case that highlights the use of PsExec to monitor the logoff or logon process and the technique of Process Monitor log comparison to pinpoint a problem that caused some machines in a corporate network to experience 3-minute logons.
• Process Explorer in PC World’s Top 75 Windows Tips of All Time
  We’re proud that Process Explorer was cited as one of PC World Magazine’s top Windows tips.

What’s New (January 11, 2010)

• ProcDump v1.7
  This update to ProcDump, a command-line utility that will generate memory dumps of processes based on various selectable criteria, now supports periodic timed dumps as well as dumps based on virtual memory thresholds.
• AccessChk v4.24
  AccessChk, a utility that shows effective security permissions for files, registry keys, services, and more, now supports process tokens.

What’s New (December 1, 2009)

• Mark's Windows Internals Session at the Professional Developer's Conference, Part 1
  Mark's Windows Internals Session at the Professional Developer's Conference, Part 2
  Mark dives deep to cover Windows 7 and Windows Server 2008 R2 kernel changes in his top-rated session from PDC 2009.
• VMMap v2.5
  This update to VMMap, a process memory analysis utility, now identifies thread environment blocks (TEBs), the process environment block (PEB), and reserved memory.
• Disk2vhd v1.4
  Disk2vhd now includes an option for Windows XP and Windows Server 2003 that directs it to fix up the kernel and HAL to make the VHDs generated for these systems bootable in Virtual PC. It also skips sectors with CRC errors to enable the conversion of systems with failing disks.

What’s New (November 3, 2009)

• NewSID Retirement and the Machine SID Duplication Myth
  Mark’s latest blog post debunks the myth that having duplicate machine SIDs causes problems, explaining why the Sysinternals NewSID tool has been retired.
• Disk2vhd v1.3
  This update to Disk2vhd makes more Windows XP and Windows Server 2003 VHDs bootable by updating their MBR and boot sectors to be compatible with Hyper-V and Virtual PC and by installing the Intelide driver if it it’s not already installed. It also optimizes image creation by not copying paging and hibernation files.
• Sigcheck v1.62
  This update to Sigcheck, a utility that displays file version and digital signature information, removes a file size limit for generating file hashes, works on 64-bit MSI files, and reports expired signatures.

What’s New (October 22, 2009)

• Windows 7 General Availability and Mark on Channel 9
  Check out Mark’s latest Channel 9 interview on Windows 7 and Windows Server 2008 R2 kernel changes, released today to coincide with Windows 7’s general availability. He talks about memory management, process reflection and more, and shows a couple of demos on a 256-processor system.

What’s New (October 21, 2009)

• Disk2vhd v1.1
  Disk2vhd now supports command-line options for automation and fixes a bug that could result in an “invalid user buffer” error during a conversion.
• ZoomIt v4.1
  Zoomit is a screen magnification and annotation utility that's useful for technical presentations. With this update, you can now easily switch between LiveZoom (supported on Vista and Windows 7) and drawing mode.
• Coreinfo v2.0
  `Coreinfo now supports IA64 and Windows Server 2008 R2 systems with more than 64 logical processors.

What’s New (October 7, 2009)

• Disk2vhd v1.0
  We’re excited to announce a new Sysinternals tool, Disk2vhd, that simplifies the migration of physical systems into virtual machines (p2v). Just run Disk2vhd on the system you want to migrate and specify the volumes for which you want data included, and Disk2vhd creates a consistent point-in-time volume snapshot followed by an export of the selected volumes into one or more VHDs that you can add to a new or existing Hyper-V or Virtual PC virtual machine.

What’s New (October 1, 2009)

• LiveKd v3.1
  This update to LiveKd, a tool that enables you to perform local kernel debugging using the Windbg tool, adds support for systems with more than 4GB of RAM and now works on x64 systems even when they aren't booted in debugging mode.
• Mark's Blog: Pushing the Limits of Windows: Handles
  Mark's latest post in his Pushing the Limits of Windows series goes inside the limits that affect handle usage. He explains the role of handles, describes how the system manages them, and shows you how to identify and debug handle leaks.
• Mark Talks About Windows 7 and Windows Server 2008 R2 at Intel Developer Forum
  Mark gave a joint presentation with Shiv Kaushik, an Intel Fellow, at IDF in San Francisco on how Microsoft and Intel collaborated during the development process to make sure that Windows takes advantage of new Intel processor features and enhancements.

Featured Sysinternal Videos

Please Enable Cookies
Please enable cookies to view featured videos.

Videos Unavailable
Featured videos are unavailable at this time. Please try again later.

Move your mouse pointer over the images to see details about each video. Click an item to view. After launching a video, click “” to view full-screen.

More Sysinternals Videos...