This is a simple example of how to hide a process by its executable path using Windows API functions. This code is for educational purposes only and should not be used for any malicious activities.
- CreateToolhelp32Snapshot: Takes a snapshot of the current processes and modules.
- Process32First/Process32Next: Iterates through the list of processes.
- OpenProcess: Opens a handle to the process.
- Module32First/Module32Next: Iterates through the modules of the process.
- strcmp: Compares the executable path of the module with the path to hide.
- Modify PID: If the path matches, the PID of the process is modified to hide it.
- Replace
pathToHidewith the actual path to the executable of the process you want to hide. - Compile the code using a C compiler that supports Windows API.
- Run the compiled executable.
- This example is simplified and does not achieve complete process hiding.
- Use this code responsibly and only in environments where you have permission to test.
- Unauthorized use of this code for hiding processes on other systems is illegal and unethical.
This project is for educational purposes only. Use at your own risk.