Tools
We will mention and demo a variety of tools throughout lectures as well as use them in assignments. Check back here if you want to try anything out for yourself.
Windows System Inspection Tools
- HijackThis: Startup registry inspector. Checks settings such as default homepage.
- Process Explorer: Process logger that is more fine grained than TaskManager. Provides information about what system resources (files, mutexes, etc) a process is using as well as DLLs it has loaded. Shows other tidbits as well, such as interrupt activity and deferred procedure calls.
- Wireshark (Ethereal): A packet sniffer that is capable of organizing packets based on what type of protocol is being used. A very handy tool to find out what exactly that networked application is sending/receiving.