Get name of all handles in current process

About

Asked 3/1, 2012 at 22:2 Answered 3/1, 2012 at 22:18

I need to list all open handles in current process. Since i could not find any function like "EnumHandles", I was thinking of making a loop from 0 to 1000. The question is how i can retrieve the name of each handle? I am using c++ and the OS is Win7 32-bit EDIT: The handle I need name of is a Mutex. By comparing the name of the mutex, i want to get the handle id I seem to have found solution using OpenMutex, but i don't know what to pass on 3rd parameter,

Botulin answered 3/1, 2012 at 22:2 Comment(4)

What do you mean by the "name of each handle" ? Handles don't have names. Do you mean the handle id, corresponding window classes or text titles? – Tjon 3/1, 2012 at 22:4

Not all handles refer to files with names. Have you considered looking at Process Explorer? – Carrasco 3/1, 2012 at 22:5

That approach will not work. What kind of handles? – Cimah 3/1, 2012 at 22:5

@MattH Question updated, i want the handle id for a mutex, by comparing the name in a loop (strcmp). – Botulin 3/1, 2012 at 22:17

I believe you have to use the NTDLL.DLL. To my knowledge this is what all tools monitoring processes, handles and other system information, have to use in the end, under Windows. I used it in a small Win32 tool, however never had to list handles.

Check here for a good intro of that library and related to your question. http://forum.sysinternals.com/howto-enumerate-handles_topic18892.html

Also the GetObjectName function in the first post of http://forum.sysinternals.com/enumerate-opened-files_topic3577.html

Accessing this kind of information in Windows may seem to be a lot of work and looks frightening because Microsoft does not want to support it, but you will see that when the 'easy' API is not giving you what you need, you have to dig to NTDLL. This is what tools like ProcessExplorer use in the end. It is not so hard to use: load the DLL, get the right function pointers to fill the structs that you declare yourself with what you will find on the net.

Docila answered 3/1, 2012 at 22:18 Comment(4)

I am not mentoring processes, it's handle located in current process – Botulin 3/1, 2012 at 22:22

I badly explained it. The NTDLL.DLL library is meant for getting information about deep system information (processes, handles, etc). This is a DLL that is undocumented by Microsoft but you can find documentation at the links I gave, or by googling. You just have to know the structs and functions to call in the DLL. – Docila 3/1, 2012 at 22:32

It look a lot of work just to retrive name of handles. I think OpenMutex might be the answer i am looking for, but i not sure if i need to pass full path of mutex(\Sessions\1\BaseNamedObjects\somemutex) or just somemutex on 3rd parameter. I have tryed both but haven't successed – Botulin 3/1, 2012 at 22:44

Yes, accessing this kind of information in Windows may seem to be a lot of work and looks frightening because Microsoft does not want to support it, but you will see that when the 'easy' API is not giving you what you need, you have to dig to NTDLL. This is what tools like ProcessExplorer use in the end. It is not so hard to use: load the DLL, get the right function pointers to fill the structs that you declare yourself with what you will find on the net. – Docila 3/1, 2012 at 23:1

Hot tags

Godot Unity Godot Help Programming Godot 4.X GUI GDScript 3D 2D Physics CSharp Godot 3.X VR XR Projects C++

Recommended topics

Hot tags