SysInternals Toolkit

Paths

SysInternals Toolkit

Author: Sami Laiho

Sysinternals toolkit is the most downloaded troubleshooting toolkit from Microsoft. This learning path teaches the most required troubleshooting skills for anyone working with... Read more

What you will learn

  • Working with the Sysinternals Toolkit
  • Troubleshooting Processes with Process Explorer
  • Troubleshooting Processes and Registry with Process Monitor
  • Troubleshooting Memory and Disks with Sysinternals tools
  • Troubleshooting Filesystems with Sysinternals tools
  • Troubleshooting Security and Active Directory Issues with Sysinternals tools
  • Troubleshooting Startup and Shutdown sequences with Sysinternals Tools
  • Working with Memory Dumps and Debugging Using Sysinternals tools
  • Exploring the Hidden Gems of Sysinternals toolkit

Pre-requisites

Basic knowledge of computers, Windows operating system and networking.

SysInternals Toolkit

Sysinternals toolkit is the most downloaded troubleshooting toolkit from Microsoft. This learning path teaches the most required troubleshooting skills for anyone working with Windows operating system or applications running on top of it. This knowledge is vital to fresh newbies and most experienced admins. This course also teaches a lot about Windows OS internals.

Working with the Sysinternals Toolkit

by Sami Laiho

Dec 23, 2016 / 1h 18m

1h 18m

Start Course
Description

As the Windows ecosystem gets bigger and bigger, there are more troubleshooting tasks than ever before. One of the most important things you can do to become a faster and more efficient troubleshooter is to learn how to take full benefit of the Sysinternals toolkit. In this course, Working with the Sysinternals Toolkit, you'll learn how to install and use all of the tools provided in the toolkit. First, you'll get a high level introduction and overview to the Sysinternals tools. Next, you'll learn about the core concepts of the Windows operating system. Finally, you'll learn all about support for using the Sysinternals tools. By the end of this course, you'll be able to work with, and be proficient in, some of the best troubleshooting tools available.

Table of contents
  1. Course Overview
  2. Introduction to the Sysinternals Tools
  3. Installing and Using the Sysinternals Tools
  4. Core Concepts of the Windows Operating System
  5. Support for Sysinternals Tools

Troubleshooting Processes with Sysinternals Process Explorer

by Sami Laiho

Mar 7, 2017 / 1h 17m

1h 17m

Start Course
Description

Task Manager is one of the most used troubleshooting tools by people, which is bad as it can technically never know what's wrong with your Computer. To become a better troubleshooter you should move from looking at processes with Task Manager to looking at threads on Process Explorer. In this course, Troubleshooting Processes with Sysinternals Process Explorer, you'll learn how to become a power user of the most downloaded tool of the Sysinternals toolkit. First, you'll explore how to find troubled processes and threads in Windows. Next, you'll discover how to find performance bottlenecks in Windows. Finally, you'll learn how to find Malware in Windows and how to get rid of them. By the end of this course, you'll know how to effectively use the most important troubleshooting tool available.

Table of contents
  1. Course Overview
  2. Overview of Process Explorer
  3. Using the User Interface of Process Explorer
  4. Working with DLLs and Handles
  5. Viewing Process Details
  6. Viewing Thread Details
  7. Verifying Image Signatures
  8. Using VirusTotal to Hunt Malware
  9. Using the Display Options of Process Explorer
  10. Miscellaneous Features

Troubleshooting Processes and Registry with Sysinternals Process Monitor

by Sami Laiho

May 18, 2017 / 1h 19m

1h 19m

Start Course
Description

There is an age old saying in Windows: "If something breaks in Windows, run Process Monitor". This is absolutely true, and Process Monitor is one of the best tools to use in troubleshooting. In this course, Troubleshooting Processes and Registry with Sysinternals Process Monitor, you'll learn how to utilize Process Monitor for troubleshooting. First, you'll explore how to find settings in the Registry and learn how to resolve bottlenecks in performance. Next, you'll cover how to fix broken applications. Finally, you'll learn how to analyze slow boot sequences. By the end this course, you'll know how to effectively use one of the most important troubleshooting tools available.

Table of contents
  1. Course Overview
  2. Overview of Process Monitor
  3. Working with Events in Process Monitor
  4. Filtering, Highlighting, and Bookmarking in Process Monitor
  5. Viewing the Process Tree in Process Monitor
  6. Saving and Opening Process Monitor Traces
  7. Logging Boot, Post-logoff, and Shutdown Activity in Process Monitor
  8. Controlling Log Sizes in Process Monitor
  9. Automating the Use of Process Monitor
  10. Using the Analysis Tools in Process Monitor

Troubleshooting Memory and Disks with Sysinternals Tools

by Sami Laiho

Aug 8, 2017 / 2h 51m

2h 51m

Start Course
Description

There are dozens of myths relating Windows' memory usage, virtual memory, and pagefiles. In this course, Troubleshooting Memory and Disks with Sysinternals Tools, you will learn about Windows memory management as well as how to size and optimize your pagefiles. You'll also understand how SSD's really work. Finally, you'll learn all about tools like VMMap, RAMMap, Resource Monitor, and Windows Performance Toolkit. By the end this course, you’ll know the truth about how the memory management in Windows works.

Table of contents
  1. Course Overview
  2. Overview of Memory Management in Windows
  3. Overview of Disk Systems in Windows
  4. Analyzing Memory with VMMap
  5. Analyzing Memory with RAMMap
  6. Analyzing Hard Disk and Filesystem Related Issues with Sysinternals Tools
  7. Other Tools for Analyzing Performance Issues

Troubleshooting Filesystems with Sysinternals Tools

by Sami Laiho

Jan 8, 2018 / 43m

43m

Start Course
Description

You can't use an OS without the filesystem, so knowing how to troubleshoot it is crucial. In this course, Troubleshooting Filesystems with Sysinternals Tools, you'll learn the basics of troubleshooting. First, you'll dive into an overview of how to delete malware which is the hardest to detect and remove. Then, you'll learn how to work with hard and soft links within different filesystems. Finally, you'll master how to find hidden alternate data streams. When you're finished with this course, you'll have a foundational knowledge of Sysinternals tools that will help you as you move forward in troubleshooting filesystems.

Table of contents
  1. Course Overview
  2. Overview of Filesystems in the Windows OS
  3. Using Sysinternals File Utilities
  4. Using Sysinternals NTFS Filesystem Utilities
  5. Analyzing Disk Usage with Sysinternals Utilities
  6. Managing Post-reboot File Operations with Sysinternals Utilities

Troubleshooting Security and Active Directory Issues with Sysinternals Tools

by Sami Laiho

Apr 17, 2018 / 1h 4m

1h 4m

Start Course
Description

To understand how to troubleshoot security related problems, you need to understand how the core concepts of Windows’ Security Subsystem work. In this course, Troubleshooting Security and Active Directory Issues with Sysinternals Tools, you’ll learn how the cornerstones of Windows Security are built and how to use Sysinternals to solve issues relating to security and Active Directory. First you’ll learn how Windows’ access control works. Next, you’ll explore how to identify the best tools for troubleshooting security issues. Finally, you’ll discover how Sysinternals tools can be used to troubleshoot Active Directory related issues. When you’re finished with this course, you’ll have the skills and knowledge needed to troubleshoot security and Active Directory related problems with Sysinternals tools.

Table of contents
  1. Course Overview
  2. Overview of Security Subsystem in the Windows OS
  3. Playing C.S.I. with Sysinternals Sysmon
  4. Troubleshooting Security Issues with Sysinternals Tools
  5. Analyzing and Managing Logons with Sysinternals Tools
  6. Diagnosing Authentication and Authorization Issues in Active Directory

Troubleshooting Startup and Shutdown Sequences with Sysinternals Tools

by Sami Laiho

Jan 3, 2019 / 59m

59m

Start Course
Description

To understand how to troubleshoot problems related to slow boot times or logons, you need to understand how the operating system actually gets started on a PC. In this course, Troubleshooting Startup and Shutdown Sequences with Sysinternals Tools, you will learn how the boot sequence on a PC works and how to use Sysinternals to solve issues relating to boot, logon, logoff, or shutdown sequences. First, you will discover how the OS really starts on a PC. Next, you will explore how a user logon really works. Finally, you will learn how to analyze why a boot or a logon is slow on your computer. When you are finished with this course, you will have the skills and knowledge needed to troubleshoot problems related to non-working or slow startups and logons with Sysinternals tools.

Table of contents
  1. Course Overview
  2. Overview of the Windows Boot Process and Logon
  3. Capturing a Trace of a Boot and Logon Process
  4. Analyzing Automatically Starting Processes with Autoruns
  5. Analyzing Driver and Network Issues Relating Boot Process

Working with Memory Dumps and Debugging Using Sysinternals Tools

by Sami Laiho

Apr 10, 2019 / 50m

50m

Start Course
Description

How do you diagnose non-responsive or extremely slow applications? In this course, Working with Memory Dumps and Debugging Using Sysinternals Tools, you will gain the ability to debug applications and analyze Blue Screens. First, you will learn to setup debugging tools. Next, you will discover debugging applications and creating memory dumps. Finally, you will explore how to create and analyze Blue Screens. When you are finished with this course, you will have the skills and knowledge of debugging and memory analysis needed to understand application and operating systems hangs and crashes.

Table of contents
  1. Course Overview
  2. Understanding the Concepts of Debugging
  3. Debugging a Live Operating System
  4. Debugging an Application
  5. Creating and Debugging Memory Dumps

Exploring the Hidden Gems of Sysinternals Toolkit

by Sami Laiho

Jul 26, 2019 / 60m

60m

Start Course
Description

This is the grand finale for the Sysinternals learning path on Plurasight. In this course, Exploring the Hidden Gems of Sysinternals Toolkit, you will go through the hidden gems still left unvisited after the eight courses before. First, you will see how to find all the hidden gems spoken of within Sysinternals. Next, you will explore one of the most famous toolkits inside Sysinternals, known as PSTools. Then, you will be taught how to use a few tools to diagnose PCs. Finally, you will discover how to use miscellaneous tools that are created for every admin for daily work. Sysinternals toolkit is the most downloaded toolkit from Microsoft and has more than a hundred tools. By the end of this course, you will have gained a much better understanding of the capabilities of the toolkit within Sysinternals.

Table of contents
  1. Course Overview
  2. Discovering the Hidden Gems of Sysinternals Toolkit
  3. Using PSTools for Remote Diagnostics and Management
  4. Diagnosing PCs with Different Sysinternals Tools
  5. Discovering Miscellaneous Tools in the Sysinternals Toolkit