📕
writeups
  • Introduction
  • Try Hack Me
    • Walkthroughs
      • Core Windows Processes
      • Linux: Local Enumeration
      • Network services
      • Network services 2
      • What the Shell?
      • Common Linux Privesc
      • Hashing - Crypto 101
    • Challanges (CTF)
      • Basic pentesting
      • tomghost
      • VulnNet
  • hack the box
    • Easy machines
    • Medium machines
Powered by GitBook
On this page
  • Task 2:
  • Task 3:

Was this helpful?

  1. Try Hack Me
  2. Walkthroughs

Core Windows Processes

Explore the core processes within a Windows operating system and understand what is normal behaviour. This foundational knowledge will help you identify malicious processes running on an endpoint!

PreviousWalkthroughsNextLinux: Local Enumeration

Last updated 4 years ago

Was this helpful?

Task 2:

Task Manager is a built-in GUI-based Windows utility that allows users to see what is running on the Windows system.

Necessary tools for monitoring:

  • Process Hacker:

  • Task manager by Windows

Important point : PID

  • PID means - Process Identifier Number

  • Windows assigns a unique number when a process starts

  • A single program can run multiple process with different PID.

  • PID for 'System' is always 4

Task 3:

Link