Find Out What’s Running on YOUR Machine with the Windows API!

Channel:
Mitch Edwards (@valhalla_dev)
Subscribers:
8,420
Published on ● Video Link: https://www.youtube.com/watch?v=tnMUS8cMYwQ


Duration: 32:27
331 views
0

Join the Discord to chat all things malware research and Windows OS deep diving!
https://discord.gg/G9UMXm8uv3

--

In this episode of the Windows API deep dive series, we're going to talk about the all-important Windows process and how to enumerate them with the Windows API! This is super important for malware reversing and development and general OS research. I hope you enjoy, leave me a like and consider subscribing if you do!

--

Twitter:
https://twitter.com/viking_sec

Windows API Playlist:
https://www.youtube.com/watch?v=VnWOSWZthdo&list=PL1jK3K11NINgL0qUAszHwRhGIIyOvfUI9

Reverse-Reverse Engineering Playlist:
https://www.youtube.com/watch?v=RWOahxzoGCU&list=PL1jK3K11NINhvnr7Y3iGu8eLKec72Sl7D&index=3

--
Table of Contents:
0:00 Intro
0:13 Studying the Windows API
0:30 Windows Processes
1:10 Process Memory
1:45 The importance of processes
2:10 Looking at process information
3:00 The Code
4:30 Enumerating PIDs
5:00 EnumProcesses()
5:57 PIDs
9:07 Debugging EnumProcesses()
15:00 Enumerating Process Names
18:07 Windows Handles
18:40 OpenProcess()
22:09 Windows Modules
24:07 EnumProcessModules()
27:05 GetModuleBaseName()
28:23 Code Recap
29:40 Running the code
30:00 Limitations

--
#reverseengineering #windowsos #c++



Other Videos By Mitch Edwards (@valhalla_dev)


2022-03-22[Remotion] This video was made entirely using code
2022-01-16[Scrape the Planet Course] 4.8 - Scraper Course Re-cap and Section 5 Intro
2022-01-16[Scrape the Planet Course] 4.6-The Kevin Bacon Spider: Implementing Local Caching in our IMDB Spider
2022-01-15[Scrape the Planet Course] 4.5 - The Kevin Bacon Spider: An Improved Design for our IMDB Spider
2022-01-14[Scrape the Planet Course] 4.4 - The Kevin Bacon Spider: Building an Imperfect IMDB Spider
2022-01-13[Scrape the Planet Course] 4.3 - The Kevin Bacon Spider: Design and Skeleton Code
2022-01-12[Scrape the Planet Course] 4.2 - The Kevin Bacon Problem: Introducing our IMDB Spider
2022-01-11[Scrape the Planet Course] 4.1 - Concepts of Spidering: What is a Web Spider?
2022-01-05RRE6 - Upgrading my Malware's Process Injection Capabilities!
2021-12-31Valhalla Malware Development and Exploit Research Discord!
2021-12-31Find Out What’s Running on YOUR Machine with the Windows API!
2021-12-27What Is the Windows API?
2021-12-22What is an Operating System, and/or Existential Dread?
2021-12-18RRE5 - Losing Sanity while Developing Malware in C++ Hell
2021-12-14How Much My First Udemy Course Made in 1 Month!
2021-12-10RRE 4: Malware Process Injection for a Wealth of Stealth!
2021-12-08Python for Absolute Beginners Episode 3: Fun with Functions!
2021-12-06Python Tips 03: Returning Multiple Items from a Function!
2021-12-03RRE 3: Re-Learning C/C++ for Malware Development
2021-12-01Using Flask Templates to Build Simple API Dashboards
2021-12-01Python Tips 02: Filtering Arrays with Lambdas!


Tags:
windows api
win32
win32 api
windows api tutorial
c++
malware development
system programming
c/c++
malware dev
programming malware
writing malware
program malware
api tutorial
windows internals
learning windows internals
windows internals for beginners
hacking
security