Threat Report: Exposing Malware in Linux-Based Multi-Cloud Environments | Download Now

Carbon Black Cloud: How To Enable Driver Verifier for BSOD Cases

Carbon Black Cloud: How To Enable Driver Verifier for BSOD Cases

Environment

  • Carbon Black Cloud Sensor
  • Microsoft Windows: All Supported Versions

Objective

Steps needed to enable Driver Verifier during BSOD issues.

Resolution

To enable Driver Verifier, follow these steps:
  1. Open a Command Prompt window (Run as administrator)
  2. Run the following command
verifier /standard /driver ctifile.sys ctinet.sys
  1. Install the Cb Defense sensor
  2. Reboot / reproduce the BSOD and collect a full memory dump

Additional Notes

  • Once the dump is collected, they should disable Driver Verifier as it can cause additional system instability and performance issues. This can be done by running verifier /reset in an Admin Command Prompt

Related Content


Was this article helpful? Yes No
100% helpful (1/1)
Article Information
Author:
Creation Date:
‎11-27-2018
Views:
2458
Contributors