Windows 10 poweruser

Over the past year, Microsoft has quietly released new built-in Windows 10 command-line applications and free Microsoft Store apps that enhance the operating system's functionality.

Microsoft did not officially announce these new tools in some cases, and they were discovered by users instead.

In this article, we're going to highlight these new programs and other apps so power-users can take greater control over Windows 10.

The Pktmon network packet sniffer

Windows 10 now includes a built-in network packet sniffer called 'Pktmon,' with two new features recently added in the Windows 10 May 2020 Update.

As first reported by BleepingComputer, in the Windows 10 October 2018 update, Microsoft quietly sneaked in the real-time network traffic monitoring tool called Pktmon. This tool allows users to monitor the network activity of your apps and other tools and diagnose networking issues.

Built-in Pktmon network packet sniffer
Built-in Pktmon network packet sniffer

In Windows 10 2004, Microsoft added two additional features to Pktmon: viewing sniffed packets in real-time and converting Pktmon logs into the PCAPNG support. In this version of Pktmon, you can enable real-time monitoring using the -l real-time argument.

As PCAPNG is supported in many network monitoring software, such as Wireshark, it gives users additional options to analyze logs.

Winget package manager

This year, Microsoft released a Windows 10 package manager called Winget to install and manage apps directly from the command line.

To install applications with winget, you type commands such as "winget search" to search for an app or "winget install" to install one, as illustrated below.

Winget Package Manager
Winget Package Manager

Microsoft has created a curated repository containing hundreds of applications that can be installed and managed using Winget.

You can use the search command to look for apps with a particular keyword. For example, if you want to search for notepad-alternatives, you can use the word 'note' as the search keyword.

winget search note

When you run the above command, Notepad++ and other apps with the string 'note' will appear. If you want to see a list of all available packages, you also type winget search without any arguments.

Windows Subsystem for Linux 2 (WSL 2)

Windows 10 now comes with a new Windows Subsystem for Linux 2, which includes performance improvements and greater compatibility with a broader range of Linux applications.

WSL 2 includes a genuine open-source Linux kernel based on version 4.19 from Kernel.org. WSL 2 also enables full access to standard system calls, improves compatibility for Linux apps, increases file system performance, and more

Ubuntu using WSL 2
Ubuntu using WSL 2

WSL 2 includes the following features:

  • Full Linux kernel
  • Increased file IO performance
  • Full system call compatibility
  • WSL 2 uses a smaller amount of memory on startup

If you are already using WSL, you can upgrade your installed Linux distributions to WSL 2 using the wsl --set-version command..

Windows File Recovery tool

Microsoft also sneaked in a new Windows 10 File Recovery command-line Tool that allows you to recover deleted files from a hard drive, USB drive, and an SD card.

"Accidentally deleted an important file? Wiped clean your hard drive? Unsure of what to do with corrupted data? Windows File Recovery can help recover your personal data," the description of the free tool reads.

The tool is a command-line executable named winfr.exe, and users can see its help file below.

Windows File Recovery tool
Windows File Recovery tool

By default, Windows File Recovery Tool comes with three modes of operation - 'Default,' 'Segment,' and 'Signature,' each with their strengths. 

PowerToys for Windows 10

Windows 10 PowerToys are a suite of open-source tools that allow you to extend File Explorer's capabilities, optimize app windows for big monitors, resize images, and more.

Batch Renamer PowerToy
Batch Renamer PowerToy

Some of the PowerToys include:

  • Image Resizer
  • Windows File Explorer's preview pane
  • Replace slow Windows Search with Run-like tool.
  • Modify Keyboard shortcuts
  • Batch File Renamer
  • Color Picker

Read more: How to supercharge Windows 10 with PowerToys.

Windows Terminal

Windows Terminal is an open-source multi-tabbed console program that allows Windows 10 users to launch multiple shell/console tabs in the same Windows.

For example, Windows Terminal can have a tab with a PowerShell console, another with the Windows 10 command prompt, and another with a WSL Ubuntu shell.

Windows Terminal
Windows Terminal

Windows Terminal is highly customizable, with hyperlink support, mouse support, desktop backgrounds, and the ability to map keyboard commands.

In the latest Windows Terminal Preview version, you can enable a new settings page using a hidden graphical user interface. To access this hidden GUI 'Settings' interface, you need to follow the steps highlighted here.

If you are continually using the command line or other shells, Windows Terminal is a tool you want to install.

PowerShell 7

Microsoft has also published PowerShell 7 with a range of new features, including automatic new version notifications, structured data like JSON, CSV, XML, and other improvements.

The new features include:

  • Pipeline parallelization with ForEach-Object -Parallel
  • New operators:
    • Ternary operator: a ? b : c
    • Pipeline chain operators: || and &&
    • Null coalescing operators: ?? and ??=
  • A simplified and dynamic error view and Get-Error cmdlet for easier investigation of errors
  • A compatibility layer that enables users to import modules in an implicit Windows PowerShell session
  • Automatic new version notifications
  • The ability to invoke DSC resources directly from PowerShell 7 (experimental)

PowerShell 7 can be downloaded from the Microsoft Store.

Sysinternals Utilities

Windows Sysinternals is a suite set of free utilities developed by Microsoft that lets power users manage, diagnose, troubleshoot, and monitor Windows.

One of the suite's most popular utilities is Process Explorer (procexp), as it provides a detailed list of running processes and their loaded handles and DLLs. Using this process list, you can quickly find problematic and resource-intensive processes and terminate them as needed.

Process Explorer

One of Process Explorer's advanced features allows users to track down DLL-version problems or handle leaks to diagnose problems with Windows or applications. Process Explorer is also handy when checking for suspicious processes that may be malware.

Other popular utilities include Process Monitor, which lets you monitor the file, network, and registry activity of running processes, and Sysmon, which allows you to monitor for various activity on a computer.

For example, with Sysmon, you can monitor for process tampering attempts, log data copied to the Windows Clipboard, perform DNS query logging, and automatically backup deleted files.

All of the Sysinternals utilities can be downloaded from its main site, or if you wish to download them directly or within batch files, you can use their Sysinternals Live service.

Related Articles:

Microsoft fixes bug behind incorrect BitLocker encryption errors

Microsoft April 2024 Patch Tuesday fixes 150 security flaws, 67 RCEs

Windows 10 KB5036892 update released with 23 new fixes, changes

New Windows driver blocks software from changing default web browser

Recent Windows updates break Microsoft Connected Cache delivery