Category: | Win32 Stuff |
Author/Contact Info | t0mas@netlords.net |
Description: | A package to list the currently running processes on a Win32 box. It uses Win32::API. |
#!/usr/local/bin/perl -w # # Win32SnapWalk package # by t0mas@netlords.net # package Win32SnapWalk; use strict; use Win32::API; use constant TH32CS_SNAPPROCESS => 0x00000002; use constant DWORD_SIZE => 4; use constant LONG_SIZE => 4; use constant MAX_PATH_SIZE => 260; ###################################################################### sub GetProcessList { # # Get list of processes, return as an array of hashes # my $hProcessSnap; my $pe32; my @pList; my $process; # Import required functions my $CreateToolhelp32Snapshot = new Win32::API( "kernel32", "CreateToolhelp32Snapshot", ["N", "N"], "I"); if (! defined $CreateToolhelp32Snapshot) { die "Can't import CreateToolhelp32Snapshot"; } my $Process32First = new Win32::API( "kernel32", "Process32First", ["I", "P"], "I"); if (! defined $Process32First) { die "Can't import Process32First"; } my $Process32Next = new Win32::API( "kernel32", "Process32Next", ["I", "P"], "I"); if (! defined $Process32Next) { die "Can't import Process32Next"; } my $CloseHandle = new Win32::API( "kernel32", "CloseHandle", ["I"], "V"); if (! defined $CloseHandle) { die "Can't import CloseHandle"; } # Take a snapshot of all processes in the system. $hProcessSnap = $CreateToolhelp32Snapshot->Call(TH32CS_SNAPPROCESS +, 0); if (! $hProcessSnap) { die "Unable to get process list"; } # Fill in the size of the structure with blanks before using it. # Should be sizeof(PROCESSENTRY32) but I just guess here...; $pe32 = " " x (DWORD_SIZE*8+LONG_SIZE+MAX_PATH_SIZE); # Walk the snapshot of the processes, and for each process, # push to list. if ($Process32First->Call($hProcessSnap, $pe32)) { do { # Empty hash $process={}; # Unpack structure to hash ($process->{dwSize}, $process->{cntUsage}, $process->{th32ProcessID}, $process->{th32DefaultHeapID}, $process->{th32ModuleID}, $process->{cntThreads}, $process->{th32ParentProcessID}, $process->{pcPriClassBase}, $process->{dwFlags}, $process->{szExeFile}) = unpack("LLLLLLLlLA*",$pe32); # Push process to list push(@pList,$process); # Fill in the size of the structure again with blanks. $pe32 = " " x (DWORD_SIZE*8+LONG_SIZE+MAX_PATH_SIZE); } while ($Process32Next->Call($hProcessSnap, $pe32)); } # Close handle $CloseHandle->Call($hProcessSnap); # Return process list return @pList; }; ###################################################################### 1; __END__ =head1 NAME Win32SnapWalk - List processes running on a Win32 box =head1 DESCRIPTION A package that lists processes running on a Win32 box. =head1 SYNOPSIS Example: #!/usr/local/bin/perl -w use Win32SnapWalk; my @processes=Win32SnapWalk::GetProcessList(); for my $href ( @processes ) { print "{\n"; for my $name ( keys %$href ) { print " $name=$href->{$name}\n"; } print "}\n"; } =head1 SEE ALSO L<Win32::API> =head1 BUGS The hash element dwSize is wrong and meaningless. Its supposed to hold + the size of the process structure (sizeof(PROCESSENTRY32)) and shold be set bef +ore calling Process32First if you do it in C/C++. This package is only tested on Win2k, and it may behave faulty on the +other Win* flavours Probably a few... =head1 FUTURE DEVELOPMENT Module, heap, and thread walking seems like logical improvements. =head1 DISCLAIMER I do not guarantee B<ANYTHING> with this package. If you use it you are doing so B<AT YOUR OWN RISK>! I may or may not support this depending on my time schedule... =head1 AUTHOR t0mas@netlords.net =head1 COPYRIGHT Copyright 1999-2000, t0mas@netlords.net This package is free software; you can redistribute it and/or modify it under the same terms as Perl itself. |
Back to
Code Catacombs