Jeff Stokes
@windowsperf.bsky.social
Windows Debugging, Perf analytics, cybersecurity, VDI, Deployment
Principal EE at Tanium. Thoughts and words my own
Author, speaker, debug engineer, perf analytics guy and gamer
https://illuminati.services
Principal EE at Tanium. Thoughts and words my own
Author, speaker, debug engineer, perf analytics guy and gamer
https://illuminati.services
Pinned
Jeff Stokes
@windowsperf.bsky.social
· Nov 16
What is the best thing that has ever happened to you for being nice?
Jeff Stokes's answer: I had a blind request on LinkedIn a few years ago. A police officer in a small-ish college town asking if I could help mentor him in the IT field. I agreed because he seemed pass...
www.quora.com
How to read a shutdown trace from NETSH and WPRUI to home in on what PID is doing what network traffic at shutdown
So in my last post, I described a method for homing in on who is doing what on the network whilst a machine is shutting down. I expect some, a few, random noise data points…
So in my last post, I described a method for homing in on who is doing what on the network whilst a machine is shutting down. I expect some, a few, random noise data points…
How to read a shutdown trace from NETSH and WPRUI to home in on what PID is doing what network traffic at shutdown
So in my last post, I described a method for homing in on who is doing what on the network whilst a machine is shutting down. I expect some, a few, random noise data points represented by PID 0 due to requests being made and then the process being killed before the network activity happens. Or perhaps some last throes of a zombied process finally being cleaned up,
illuminati.services
April 29, 2025 at 4:59 PM
How to read a shutdown trace from NETSH and WPRUI to home in on what PID is doing what network traffic at shutdown
So in my last post, I described a method for homing in on who is doing what on the network whilst a machine is shutting down. I expect some, a few, random noise data points…
So in my last post, I described a method for homing in on who is doing what on the network whilst a machine is shutting down. I expect some, a few, random noise data points…
How to collect a netsh and WPR trace for shutdown specific symptoms
In the event you have something that only impacts an endpoint when it is being logged off/shutdown, you can do the following to collect declarative data. mkdir C:\temp cd C:\temp netsh trace start capture=yes correlation=yes l…
In the event you have something that only impacts an endpoint when it is being logged off/shutdown, you can do the following to collect declarative data. mkdir C:\temp cd C:\temp netsh trace start capture=yes correlation=yes l…
How to collect a netsh and WPR trace for shutdown specific symptoms
In the event you have something that only impacts an endpoint when it is being logged off/shutdown, you can do the following to collect declarative data. mkdir C:\temp cd C:\temp netsh trace start capture=yes correlation=yes l report=no tracefile=C:\temp\netshtrace.etl then follow it up with the instructions in this post: This will shutdown the machine. Power it back up, your WPR recording is in Documents\WPR files\
illuminati.services
April 25, 2025 at 9:53 PM
How to collect a netsh and WPR trace for shutdown specific symptoms
In the event you have something that only impacts an endpoint when it is being logged off/shutdown, you can do the following to collect declarative data. mkdir C:\temp cd C:\temp netsh trace start capture=yes correlation=yes l…
In the event you have something that only impacts an endpoint when it is being logged off/shutdown, you can do the following to collect declarative data. mkdir C:\temp cd C:\temp netsh trace start capture=yes correlation=yes l…
AMD User Experience Proxy and handle leaks
This is an odd fellow here. As you can see in the image below, AUEPMaster has 157k handles. Yesterday it had over 1 million but I failed to capture a screenshot before reboot. This hasn't impacted game performance as far as I can tell, just an annoyance.…
This is an odd fellow here. As you can see in the image below, AUEPMaster has 157k handles. Yesterday it had over 1 million but I failed to capture a screenshot before reboot. This hasn't impacted game performance as far as I can tell, just an annoyance.…
AMD User Experience Proxy and handle leaks
This is an odd fellow here. As you can see in the image below, AUEPMaster has 157k handles. Yesterday it had over 1 million but I failed to capture a screenshot before reboot. This hasn't impacted game performance as far as I can tell, just an annoyance. Wondering if it's actually working as intended, does it have a security hole, etc...
illuminati.services
March 15, 2025 at 10:01 PM
AMD User Experience Proxy and handle leaks
This is an odd fellow here. As you can see in the image below, AUEPMaster has 157k handles. Yesterday it had over 1 million but I failed to capture a screenshot before reboot. This hasn't impacted game performance as far as I can tell, just an annoyance.…
This is an odd fellow here. As you can see in the image below, AUEPMaster has 157k handles. Yesterday it had over 1 million but I failed to capture a screenshot before reboot. This hasn't impacted game performance as far as I can tell, just an annoyance.…
Check out Aaron Margosis' writeup on CVE-2013-3900, the blast from the past that never really remediated.
Enable Certificate Padding Check: REG_SZ or REG_DWORD?
Summary
aaron-margosis.medium.com
January 14, 2025 at 6:10 AM
Check out Aaron Margosis' writeup on CVE-2013-3900, the blast from the past that never really remediated.
Reposted by Jeff Stokes
Trump's promise of mass deportation has caused private prison stock to soar. Time to re-read Shane Bauer's incredible investigation where he went undercover for months as a private prison guard. It's long, it's harrowing, it won all the awards: www.motherjones.com/politics/201...
Private prisons are shrouded in secrecy. I took a job as a guard to get inside—then things got crazy
This is the biggest investigation we’ve ever published.
www.motherjones.com
November 22, 2024 at 7:39 PM
Trump's promise of mass deportation has caused private prison stock to soar. Time to re-read Shane Bauer's incredible investigation where he went undercover for months as a private prison guard. It's long, it's harrowing, it won all the awards: www.motherjones.com/politics/201...
Reposted by Jeff Stokes
Reposted by Jeff Stokes
Reposted by Jeff Stokes
Reposted by Jeff Stokes
I’m saying it now with hopes that it sinks in: Donald Trump cannot take any oath of office until he is granted amnesty for breaking the last one he swore. That’s just straight up in the Constitution. 2/3 of each House. That’s the bar.
November 21, 2024 at 3:10 PM
I’m saying it now with hopes that it sinks in: Donald Trump cannot take any oath of office until he is granted amnesty for breaking the last one he swore. That’s just straight up in the Constitution. 2/3 of each House. That’s the bar.
Reposted by Jeff Stokes
BREAKING: Gaetz withdraws from consideration for attorney general.
November 21, 2024 at 5:27 PM
BREAKING: Gaetz withdraws from consideration for attorney general.
Reposted by Jeff Stokes
BREAKING NEWS:
The Matt Gaetz file has officially been leaked:
An “unknown and unauthorized third party” has gained access to depositions tied to Matt Gaetz, a source says.
RT if you’re ready to see it. 🍿
The Matt Gaetz file has officially been leaked:
An “unknown and unauthorized third party” has gained access to depositions tied to Matt Gaetz, a source says.
RT if you’re ready to see it. 🍿
November 19, 2024 at 4:29 PM
BREAKING NEWS:
The Matt Gaetz file has officially been leaked:
An “unknown and unauthorized third party” has gained access to depositions tied to Matt Gaetz, a source says.
RT if you’re ready to see it. 🍿
The Matt Gaetz file has officially been leaked:
An “unknown and unauthorized third party” has gained access to depositions tied to Matt Gaetz, a source says.
RT if you’re ready to see it. 🍿
Meet a coworker for lunch yesterday, he had a passenger
November 18, 2024 at 5:24 PM
Meet a coworker for lunch yesterday, he had a passenger
Reposted by Jeff Stokes
The rise of Bluesky and Threads, coupled with the fleeing of users from X, suggests a long-term shift away from centralized social media.
The rise of Bluesky, and the splintering of social
Welcome to The Debrief with Mat Honan, your weekly take on the tech news that really matters, links to stories we love, and the occasional recommendation.
www.technologyreview.com
November 18, 2024 at 2:45 PM
The rise of Bluesky and Threads, coupled with the fleeing of users from X, suggests a long-term shift away from centralized social media.
Wow Gemini was cranky! www.theregister.com/2024/11/15/g...
Google Gemini tells grad student to 'please die'
First true sign of AGI – blowing a fuse with a frustrating user?
www.theregister.com
November 16, 2024 at 1:33 PM
Wow Gemini was cranky! www.theregister.com/2024/11/15/g...
Reposted by Jeff Stokes
If you are in cybersecurity repost this so we can all follow each other 😬
November 15, 2024 at 4:53 PM
If you are in cybersecurity repost this so we can all follow each other 😬