
Process32Next
Read documentation
Through official Microsoft Developer Network (MSDN).
Featured in Techniques
Technique Name | Technique ID's | Has Snippet(s) | Has Rules(s) |
---|---|---|---|
APC injection | U1221 E1055.004 | ||
SuspendThread | U0101 C0055 | ||
Kill Process | U0403 | ||
Detecting Online Sandbox | U1338 | ||
Access Token Manipulation: Parent PID Spoofing | U1234 T1134.004 | ||
Parent Process Detection | U0404 | ||
Atom Bombing | U1220 |