Process Hacker Discussion Forum

Search found 11 matches

by zer0cat
04 Nov 2021 17:56
Forum: General Discussion
Topic: Inject DLL was removed?
Replies: 5
Views: 5143

Re: Inject DLL was removed?

dmex wrote: 29 Oct 2021 10:35
Who said it was removed?
but where is it? right click->Misc.. there is no option dll !
by zer0cat
28 Oct 2021 20:13
Forum: General Discussion
Topic: Inject DLL was removed?
Replies: 5
Views: 5143

Re: Inject DLL was removed?

dmex wrote: 10 Oct 2021 14:02
Why should it remain?
for debugging purposes. It was very good usefull. In any case, I keep the old version too..
by zer0cat
08 Oct 2021 22:08
Forum: General Discussion
Topic: Inject DLL was removed?
Replies: 5
Views: 5143

Re: Inject DLL was removed?

up
by zer0cat
11 Jun 2021 21:26
Forum: General Discussion
Topic: Inject DLL was removed?
Replies: 5
Views: 5143

Inject DLL was removed?

In version 2.39 was "inject dll", but in version 3 not.

Why?
And what is version 3 anyway? Why do many sites, including wikipedia, say that the latest version is 2.39?
by zer0cat
02 Apr 2021 08:41
Forum: General Discussion
Topic: How this WinApi function works?
Replies: 2
Views: 2767

Re: How this WinApi function works?

Sorry, but people here know native api.
by zer0cat
27 Mar 2021 14:53
Forum: General Discussion
Topic: How this WinApi function works?
Replies: 2
Views: 2767

How this WinApi function works?

Hello,
can you tell me , how works this function https://docs.microsoft.com/en-us/window ... expression ?
Any sample or PoC.
by zer0cat
07 Nov 2020 00:25
Forum: General Discussion
Topic: Make process unreadble by process hacker
Replies: 5
Views: 4023

Re: Make process unreadble by process hacker

write you own kernel mode driver and set callback (for many info use msdn or book from pavel iosifovich about windows kernel).
by zer0cat
07 Nov 2020 00:23
Forum: General Discussion
Topic: How to get process username?
Replies: 0
Views: 4724

How to get process username?

Hello,

How can I get username of my own process? I know method with GetTokenInformation ( .. TokenUser), but this required DEBUG priv. Maybe native api can help? Only my proccess (not another) , with standart user rights.
---
GetUserName - simple and works.. Thread may be closed.
by zer0cat
08 May 2020 19:11
Forum: General Discussion
Topic: OpenProcess Windows 10
Replies: 10
Views: 8666

Re: OpenProcess Windows 10

by zer0cat
08 May 2020 13:18
Forum: General Discussion
Topic: OpenProcess Windows 10
Replies: 10
Views: 8666

Re: OpenProcess Windows 10

Thank you, but I can’t understand until the end .. Why do I have administrator rights (READ permission) in this process? I look through the ProcessHacker - security properties. Or where to look? https://imgur.com/a/D624Rd
by zer0cat
03 May 2020 17:55
Forum: General Discussion
Topic: OpenProcess Windows 10
Replies: 10
Views: 8666

Re: OpenProcess Windows 10

Hello
I can't understand.. I run program with Admin rights , but call OpenProcess(PROCESS_QUERY_LIMITED_INFORMATION.. ) in csrss return ERROR ACCESS DENIED.
Why? I only use QUERY_LIMITED_INFORMATION, no ALL_ACCESS or other..
I must have DEBUG PRIVILEGE even for this?

OS is Windows 10.