There is a feature in sysinternal's process explorer that allows a crosshair to be dragged from the application to a control in any other application you are running and highlights said control. Does anyone know how this was achieved or if there is a .NET/C++ library out there that can be reused? ...
Hi, I have a python script calling an exe file. The exe file can be in the same folder as that of the python script or in a network drive. Is it possible to call the exe if it is in a remote drive/computer? Can this be done by setting the %PATH% variable ...
I have a process I spawn with a Cygwin shell script, and I am unable to kill it with the kill command. Even with the Cygwin kill with the -f option, I get this message: kill: couldn't open pid 1234 I would like to try to kill it with PsKill, but I cannot find a way to convert the Cygwin PID to a Windows PID that PsKill will understand...
I have installed PS 1.0 on a remote PC(RPC001). I used Windows Sysinternals tool PSExec.exe to execute the following process on the remote: PSExec \\RPC001 -u myID -p myPWD PowerShell C:\script\StartPS.ps1 par1 par2 I can see the PowerShell.exe process running on the remote PC afterwards, but it is actually doing nothing, just hangin...
I'm trying to do a quick and dirty deployment of a project. I thought it would be easy to run my process, use some tool to grab a list of all loaded files (DLLs) and use that list to create a copy file list for my test deployment. Thought about using filemon but there is a lot of noise in there. Its a .net project. Thanks. ...
Hello, I am coding an application in C# that needs to know the current program and files a user has in focus. I.e. I want to write functions like: string GetProgramNameCurrentlyInFocus() { ... } string GetFilenameCurrentlyInFocus() { ... } Which return the current program executable filename (e.g. "word.exe") or the actual official ...
Hi, I started to use SysInternals suite, and it is great. But I wonder, whether there is any analog of TCPvcon, which allows to logon to remote machine, like psexec does, and then get list of TCP connections from there (similar to pslist functionality), and then to close some of connections (similar to pskill functionality). I am speak...
Hi guys, I am trying to reproduce Process Exporer's feature to tag a process running on the current machine with a Comment (Please see the Comment section in the Process properties in Process Explorer). I couldn't find any way to do it with managed code, had a try with wmic utility but I wasn't able to find a way to set a property to ...
From where does this structure originates? I know that it is declared in famous ntdll.h and is a part of undocumented windows API. But isn't it vary between different versions of windows? Is there a way to dump this structure from working system? I tried 'dt SYSTEM_HANLDE_INFORMATION' in Windbg and 'type SYSTEM_HANLDE_INFORMATION' in Sof...
Has anyone been successful at launching an instance of Windows Explorer in the SYSTEM account on Windows Vista or 7? It is possible to do this on XP, but I haven't been able to get it to completely work in Vista or 7. Trying to launch Explorer as SYSTEM into session 1 (my user session) results in Explorer exiting immediately and returni...
Process Monitor and Explorer are supplied an EXE file. But they include a driver. -Where is it. By Windows Internals, Process Monitor works by extracting a file system filter device driver from its executable image (Procmon.exe) the first time you run it after a boot, installing the driver in memory, and then deleting the driver i...