RTO
75c6c241e6
QoL update
|
2 rokov pred | |
|---|---|---|
| .. | ||
| README.md | 2 rokov pred | |
| beacon.h | 2 rokov pred | |
| bofcompile.bat | 2 rokov pred | |
| enumhandles.c | 2 rokov pred | |
| enumhandles.cna | 2 rokov pred | |
| enumhandles.h | 2 rokov pred | |
| enumhandles.o | 2 rokov pred | |
README.md
EnumHandles
Enumerate process and thread handle types between processes.
Options
Search options:
all: list all processes with handles to all other processes.h2p: list all processes that have a handle to a specific process.p2h: list handles from a specific process to all other processes.
Handle query options:
proc: search for PROCESS type handles.thread: search for THREAD type handles.
Targeted search options:
<pid>: for both theh2pandp2hsearch options, specify the PID of the process your interested in.
Usage
enumhandles all <proc | thread>enumhandles h2p <proc | thread> <pid>enumhandles p2h <proc | thread> <pid>
Compile
- 1. Make sure Visual Studio is installed and supports C/C++.
- 2. Open the
x64 Native Tools Command Prompt for VS <2019/2022>terminal. - 3. Run the
bofcompile.batscript to compile the object file. - 4. In Cobalt strike, use the script manager to load the .cna script to import the tool.