Skip to content
/ Process-Handle-Inspector Public

A small proof of concept program that prints the permissions associated with a process handle.

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

NSIDE-ATTACK-LOGIC/Process-Handle-Inspector

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
handles
handles
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
handles.sln
handles.sln
 
 

Repository files navigation

Process Handle Inspector

This is a small proof of concept program that prints the permissions associated with a process handle.

How It Works

A handle to the target process is opened (currently lsass.exe) via the OpenProcess WinAPI. The obtained handle is then passed to the NtQueryObject API, which returns an objectInfo struct that contains the GrantedAccess field. This field is a bit mask where each bit represnts a permission listed in the official documentation.

About

A small proof of concept program that prints the permissions associated with a process handle.

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages