Dev.K.
Reputation: 2488
Python winappdbg getting process name from event object
I'm developing a debugging automation system using https://github.com/MarioVilas/winappdbg.
I would like to retrieve process name from event object. Here is my code:
def EventHandler(event):
print 'Inside event handler'
# I want to print the process name here, In this case which should be somefile.exe
debug = Debug( EventHandler, bKillOnExit = True )
proc = debug.execv(['c:\somefile.exe','arg'])
debug.loop()
Upvotes: 0
Views: 136
Answers (1)
Dev.K.
Reputation: 2488
The tool author answered my question on github : Here is the solution
We can do event.get_process().get_filename(), or if we want to be more fancy:
process = event.get_process()
name = process.get_filename()
print "Process: %s" % name
Upvotes: 1
Related Questions
- Get process ID with python
- How to use WinAppDbg to hook and call existing functions given RVA of that function?
- How can I get process name using Python
- Get an event object from win32evtlog.EvtQuery results
- Finding process name by PID
- Reading windows event log in Python using pywin32 (win32evtlog module)
- Using Debugger how to get child process's PID from Parent
- Python correctly finding and reading windows application event logs
- Get process argument info in windows with python/pywin32?
- Debugging the reading of output of a Windows console app using Python