Reputation: 101
Determine security zone of iexplore.exe process
Internet Explorer launches Intranet and Trusted sites each in a separate iexplore.exe process running at Medium Integrity level.
Is there a way to determine the specific security zone of an iexplore.exe process?
I am working on a Task Manager tool and would like to distinguish iexplore.exe processes between the various security zones Restricted, Internet, Intranet and Trusted.
Upvotes: 0
Views: 105
Answers (1)
Reputation: 3285
I believe you are looking for the IInternetSecurityManager::MapUrlToZone method. Yes, it's C++ and, yes, it's, er...complicated.
Update, based on the comment:
Security zones are URL-based; process isolation is more to do with protected mode, integrity levels, and AppContainer permissions. Not all details are available through public APIs for security reasons.
IIRC, the short answer you're looking for involve searching access tokens for specific SIDs (security descriptors) (context here). But, that's going to need further context to fully understand. You'll want to read the full collection of articles and then backfill some of the details using EricLaw's highly detailed backgrounders. (That's two separate links, BTW).
If searching for the SID doesn't lead you to the answer you're looking for, the larger collection of related "how-to" tasks may help.
Hope this helps...
-- Lance
Upvotes: 0
Related Questions
- How can I find programatically where iexplore.exe is?
- Unable to Launch IE from Selenium - Protected Mode settings are not the same for all zones
- Get Internet Explorer security settings from end user
- Detecting Current Internet Explorer Security Zone
- Reading the Internet Explorer Protected Mode registry
- Reset Internet Explorer security zone to default level
- How to detect IE Protected Mode using c#
- Detecting if a process is started by IE in protected mode
- Checking Internet Explorer protected mode
- IE Securty Zone Issues