Mark's Webcasts

Watch free on-demand recordings of Mark’s top-rated presentations from TechEd, BUILD and other conferences on Azure, security, Windows troubleshooting, malware hunting. If you have a question about a topic in any of these webcasts, please visit the Sysinternals Forum for answers and help from other users and our moderators.

Case of the Unexplained

Microsoft Azure

  • The Next Generation of Azure Compute Platform
    Learn about ways to integrate with Azure Resource Manager (ARM) to enable role-based access control (RBAC), tagging,and template-based deployments,and how Windows containers with Docker compatibility make your code deploy instantly and work consistently in any environment. Also learn how Service Fabric, Microsoft’s hyper-scale micro-service PaaS that powers everything from Azure DB to Cortana, brings applications state-of-the art high-density, high availability and stateful computing capabilities.
  • Mark Russinovich and Mark Minasi on Cloud Computing
    Join Mark Russinovich and Mark Minasi for a lively discussion as they share their views on the cloud computing disruption and what it means for IT pros and developers. Mark Russinovich brings his perspective from leading Microsoft Azure architecture and Mark Minasi brings his IT expertise and view from outside.
  • Public Cloud Security: Surviving in a Hostile Multi-Tenant Environment
    The rise of public cloud computing has brought with it a new set of security considerations that are not widely understood. With a unique perspective from working on the security systems of a public cloud, Mark describes public cloud service provider and cloud customer threats, including malicious insiders, shared technology, data breaches, and data loss. For each, he assesses the risks and explores the value of mitigations like encryption-at-rest, encryption-in-flight, and other security best practices, separating hype from reality so that you can make educated decisions as your organization moves to the cloud.
  • Mark Russinovich and Mark Minasi on Cloud Computing
    Join Mark Russinovich and Mark Minasi for a lively discussion as they share their views on the cloud computing disruption and what it means for IT pros and developers. Mark Russinovich brings his perspective from leading Microsoft Azure architecture and Mark Minasi brings his IT expertise and view from outside. The economics of public cloud, future of PaaS and IaaS, how enterprises will bridge their on-premises environments with the cloud, how you should look at security in the public cloud, and what skills are important for IT pros and developers are just some of the areas they explore together.
  • Infrastructure Services on Microsoft Azure: Virtual Machines and Virtual Networks
    This session gives an overview of the new Windows Azure infrastructure services (IaaS), including support for Windows Server and Linux persistent virtual machines, new networking capabilities for hybrid applications and on-premises/cloud connectivity, and support for applications that consist of PaaS and IaaS roles. Mark explains how IaaS fits into Windows Azure to extend existing server applications to cloud and shows demonstrations of IaaS VM deployment and complex multi-VM applications.
  • Microsoft Azure Internals
    Mark Russinovich goes under the hood of the Microsoft datacenter operating system. Intended for developers who have already gotten their hands dirty with Windows Azure and understand its basic concepts, this session gives an inside look at the architectural design of the Windows Azure compute platform. Learn about Microsoft’s datacenter architecture, what goes on behind the scenes when you deploy and update a Windows Azure app and how it monitors and responds to the health of machines, its own components, and the apps it hosts.
  • Introduction to Microsoft Azure: The Cloud Operating System
    Join Mark Russinovich for an overview of Microsoft’s new cloud OS. Assuming no prior knowledge of Windows Azure, this session will start by explaining the Windows Azure Platform-as-a-Service (PaaS) app philosophy and how it differs from that of traditional server apps. Then, demonstrating key concepts with a real Windows Azure service built and deployed to the cloud, we’ll describe the Windows Azure service model, including concepts like update and fault domains. The session will then concludeby discussing the different service update options and detail the recovery steps Windows Azure follows when it detects that a service or a hardware device has failed.
  • Inside Microsoft Azure: The Cloud Operating System
    Mark Russinovich goes under the hood of Microsoft’s new cloud OS. Intended for developers who have already gotten their hands dirty with Windows Azure and understand its basic concepts, this session gives an inside look at the architectural design of Windows Azure’s compute platform. You’ll learn about Microsoft’s datacenter architecture, what goes on behind the scenes when you deploy and update a Windows Azure app and how it monitors and responds to the health of machines, its own components and the apps it hosts.
  • Channel9: MarkRussinovich: Microsoft Azure, Cloud Operating Systems and Platformas a Service
    Mark talks about what he’s working on in the Windows Azure team, why the world is moving to the cloud, and what Platform-as-a-Service (PaaS) means and how Windows Azure delivers PaaS.

Windows Internals

Security

  • TWC: Pass-the-Hash: How Attackers Spread and How to Stop Them
    Pass-the-hash transforms the breach of one machine into total compromise of infrastructure. The publication of attacks, and lack of tools to respond, have forced enterprises to rely on onerous and ineffective techniques. In this session, we deconstruct the PtH threat, show how the attack is performed, and how it can be addressed using new features and functionality recently introduced in Windows.
  • TWC: Malware Hunting with Mark Russinovich and the Sysinternals Tools
    Mark provides an overview of several Sysinternals tools, including Process Monitor, Process Explorer, and Autoruns, focusing on the features useful for malware analysis and removal. These utilities enable deep inspection and control of processes, file system and registry activity, and autostart execution points. He demonstrates their malware-hunting capabilities by presenting several current, real-world malware samples and using the tools to identify and clean malware.
  • License to Kill: Malware Hunting with the Sysinternals tools
    This session provides an overview of several Sysinternals tools, including Process Monitor, Process Explorer, and Autoruns, focusing on the features useful for malware analysis and removal. These utilities enable deep inspection and control of processes, file system and registry activity, and autostart execution points. You will see demos for their malware-hunting capabilities through several real-world cases that used the tools to identify and clean malware,and conclude by performing a live analysis of a Stuxnet infection’s system impact.
  • Zero Day: A Non-Fiction View
    Mark makes the case for how his hit cyberthriller, ZeroDay, is likely to be realized in non-fiction form in this 20-minute short version of his well-popular RSA Conference session.
  • Zero Day Malware Cleaning with the Sysinternals tools
    Slides from Mark’s highly-rated Blackhat US 2011 presentationon how to use the Sysinternals tools to hunt down and eliminate malware.
  • Channel9: Mark Talks about Windows Security and Core Architecture
    Check out Mark’s Channel 9 interview where he talks about how he got started with Windows internals, new security features in Windows Vista, User Account Control,and what he’s doing at Microsoft.

Defrag Tools