Mark Russinovich and Aaron Margosis: Introducing Windows Sysinternals Administrator's Reference

Download this episode

Download Video


Many of you use Sysinternals tools to help you manage computing responsibilities ranging from monitoring/understanding process activity with Process Explorer to debugging Win32 code with DebugView. With over 70 utilities to choose from, Sysinternals tools cover a wide swath of computing, from the lowest levels to the highest.

For the first time, we now have a definitive guide to all of these tools: Windows Sysinternals Administrator's Reference.

Mark Russinovich, Technical Fellow working on the managed cloud OS kernel—you know this as the Windows Azure Fabric Controller—is the primary author of these powerful tools - all written in C and C++ (so, Mark's an expert native and managed dev). Aaron Margosis, meanwhile, is a Microsoft Consultant and Sysinternals user with expert-level knowledge and experience using Sysinternals tools. They are an important part of his job. Aaron yearned for a book that encapsulates detailed information about all of the Sysinternals tools. Mark agreed and asked Aaron to coauthor it with him—be careful what you ask for! 

Here, we talk about the book, Mark demos a really cool new Sysinternals tool for GPU analysis that's not in the book, Charles randomizes the conversation, and we head all over the place (taking advantage of having Mark's undivided attention!) and even geek out a little on security. If you use Sysinternals tools, then this conversation is for you! Truly incredible work. It's hard to believe that for Mark this stuff is just a hobby.

Tune in.





Available formats for this video:

Actual format may change based on video formats available and browser capability.

    The Discussion

    • felix9

      Well, I use DebugView quite a lot, where/when can I get the new and 'better' version ?

    • felix9

      Maybe Mark can be a guest for GoingNative and show us how to write 'scalable', 'portable' and 'performant' native code !

    • Charles

      @felix9: Re: Mark on GoingNative... We'd love to have him as a guest. He's an elite native dev. That is for sure. Sysinternals tools are all written in native code (C/C++)...

    • felix9

      Huh, Mark said "RIGHT NOW Windows Phone runs on Windows CE", why say 'RIGHT NOW' ? this will change in the future ?? Devil

      OK OK OK.

      But I think I can remove the 'internet downloaded file' tag from the properties dialog in Explorer, so why use streams ?

    • Charles

      @felix9: Are you really Mary Jo Foley? Don't read into things too deeply. Mark was talking about why SI tools won't work on WP7 (well, not to mention you couldn't put them on the device in the first place...). The tools require Windows proper (so, Windows with Win32, Windows kernel, etc...) and Windows CE is not really Windows in the sense he's talking about....

      No news here, Mary Jo Smiley


    • felix9

      Haha, OK. And no, I am much better than Mary Jo Angel

      Talking about DebugView, one feature I missed from CodeSite  in those Delphi days is, with CodeSite Viewer you can optionally seperate the views by thread id, this is very useful while debugging multithreaded code.


    • xpclient

      So does the book also at least mention the retired tools or it focusses only on current tools?

    • sainikbiswas

      I read the Sysinternals Administrator Reference. Very Exciting Its just pure entertainment for people who troubleshoot Windows systems day in and day out. The new Processor Explorer with GPU support is awesome, just made my life a lot easier troubleshooting gpu issues to some extent

    • spons

      Interesting watch. GPU support seems kinda sketchy with nvidia optimus, but that's not really suprising since that's just a hardware hack.

    Comments closed

    Comments have been closed since this content was published more than 30 days ago, but if you'd like to continue the conversation, please create a new thread in our Forums, or Contact Us and let us know.