搜索资源列表
ListProcess
- 遍历进程和结束进程的几种常见方法,可以获取进程文件名!
枚举打开文件句柄
- 遍历进程枚举打开的文件句柄,可以说是文件删除利器。有多种删除方式R3 R0层
遍历进程
- 遍历系统中所有进程和模块的vb源代码,有一定的参考价值
memo
- 窗口、进程、模块信息分析工具加内存读取和遍历工具: vc---vs2008 可以作为*编写时分析进程、内存的工具,并可以获取所有打开的进程id句柄等信息-Window, the process module information analysis tools plus memory read and Ergodic tools: vc--- vs2008 the time of the preparation can be used as plug-analysis process,
lpcpp
- 遍历进程名,获取窗口句柄,窗口名称等,十分实用-Ergodic process, and obtain the window handle, window name and so on, very practical
Ergodicprocess
- 遍历进程线程(暂停恢复线程自定义函数)-Ergodic process thread (thread suspended custom restore function )......
DllPatch
- DLL内存补丁,由于DLL加载需要重定位,基地址变化,该工具可动态查找指定进程和DLL,并对DLL的相对地址进行修改,遍历进程和DLL,获取DLL基地址,写入数据长度,数据内容-DLL memory patch, because of relocation required DLL is loaded, change the base address, the tool can search the specified dynamic process and DLL, the relative
enum_process
- 多种用户态遍历进程的具体实现..... TOOLHELP32 API 接口 暴力搜索-Ergodic state process of a wide range of users to achieve the specific violence ..... TOOLHELP32 API search interface ..
ListProcess
- 遍历进程~~~然后可以自己发挥了吧-Traversal process ~ ~ ~ You can then play it themselves. . . .
ProcessList
- 遍历进程的,写了好久,写出来的,感觉不错,适合新手。-Through the process, wrote a long time to write out, feeling good, suitable for beginners.
task1
- 遍历进程的相关信息的驱动程序,同时要按成进程,线程等相关信息的遍历。-Ergodic process information related to the driver
copy
- windows系统下以独占模式打开的文件拷贝,遍历进程,获取句柄,拷贝文件-windows system, copy the file to open in exclusive mode, the traversal process, handle copy files
Traversal-process
- 多种遍历进程的函数,已经模块化,便于引用-Ergodic process multiple functions, has a modular, easy reference
plist
- 用api函数些的遍历进程,带父进程的工具,-GetProcessCommendLine
FindRuningQQNum
- 纯API实现,通过搜索内存,遍历进程,找到本机上所有已经成功登录的QQ号码-Net API, by searching memory, traversing process, found on this machine all have successfully logged QQ number
Test
- windows内核,编译器DDK 3790.1830,系统XP3虚拟机测试成功。定时查杀指定进程。 流程 创建定时器、创建线程、遍历进程、遍历进程所有线程、初始化APC、插入APC、调用PspExitThread函数干掉线程。。。大部分代码来着网络 在此谢过,槿作为新手参考,再次谢过大牛们。-The windows kernel, the compiler of DDK 3790.1830, XP3 system virtual machine test successful. The timi
全局句柄表枚举进程(支持x64)
- 使用ring3与ring0层通信,遍历内核全局句柄表完成进程枚举,有对僵尸进程的判断处理。支持x86,x64。
WIN7Task
- 最新的DELPHI写的,Windows7下遍历进程源码,经过长时间测试完全稳定可靠。-Latest DELPHI written, Windows7 traversal process at the source, after a long test is completely stable and reliable.
ProcViewer
- 遍历进程,并且遍历进程中的所有模块以及模块的导出函数-Traversal process, and traversing the export function in the process of all modules and modules
cid
- 通过PspCidTable遍历进程线程,并用PspTerminateThreadByPointer结束,无硬编码,在XP下测试通过((Baidu Translate)Through the PspCidTable traversal process thread, and ended with PspTerminateThreadByPointer, no hard coding, tested under XP.)