|
pSid, pWork->User.Sid);
dwLen = 256;
LookupAccountSid(NULL, pSid, &User[0], &dwLen, &Domain[0], &dwLen, &use);
// printf("\t 主机 => %s \t 权限用户 => %s ", Domain, User);
return User;
}
return NULL;
}
int main(int argc, char* argv[])
{
HANDLE ProcessHandle, hToken;
ProcessHandle = OpenProcess(PROCESS_QUERY_INFORMATION, TRUE,GetCurrentProcessId());
if (ProcessHandle != NULL)
{
if (OpenProcessToken(ProcessHandle, TOKEN_QUERY, &hToken))
{
char *token = EnumOwner(hToken);
printf("[+] 当前进程身份: %s \n", token);
CloseHandle(hToken);
CloseHandle(ProcessHandle);
}
}
system("pause");
return 0;
}
本文作者: 王瑞
本文链接: https://www.lyshark.com/post/136e2c9d.html
版权声明: 本博客所有文章除特别声明外,均采用 BY-NC-SA 许可协议。转载请注明出处!
|