Process Enumeration alternatives that avoid the use of CreateToolhelp32Snapshot, Process32First, Process32Next WinAPIs to enumerate running processes on windows.
This repository shows undocumented Native APIs to get the list of running processes without following the classic flow explained below:
- Take a snapshot of the current list of Windows processes using
CreateToolhelp32Snapshot - Get the first process in the snapshot list using
Process32First - Iterate through the subsequent processes using
Process32Nextuntil the error ERROR_NO_MORE_FILES is received, which is the signal to end the process enumeration operation