[Mirror-http://blog.whitejadesoft.com /? P = 208]
You can get the tool from here: http://processhacker.sourceforge.net/. Enjoy it!
You may have already used process Explorer (Mark russinovich, My idol) from sysinternals.com (acquired by Microsoft already). Process Explorer is a powerful tool I 've used for couple of years. Frequently times it rescued me in trouble shooting.
Process explorer is good enough. Why do you want another similar tool? Okay, let's see what process hacker has provided.
Compared with process explorer, process hacker:
- Implements almost all of the functionality offered by process explorer, plus more advanced features.
- Has advanced string scanning capabilities, as well as regular expression filtering.
- Allows you to see what a thread is waiting on.
- Highlights relocated and. Net DLLs.
- Allows you to connect to other sessions, just like Windows Task Manager can.
- Shows symbolic access masks (e.g.
Read, Write
), Rather than just numbers (e.g.0x12019f
).
- Shows names for Transaction Manager objects and ETW registration objects.
- Shows detailed token information, as well as allowing privileges to be enabled and disabled.
- Shows information for POSIX processes.
- Starts around 5 times faster than process explorer.
- Has around 8 times less background CPU usage.
Yeah! It provides some fantastic functionalities. below lists my favorite ones:
- Allows you to see what a thread is waiting on.
- Starts around 5 times faster than process explorer.
Here is a screen shot of process hacker-
Here are some comments I have:
- It's a pity that both process explorer and process hacker failed to restart Windows service for me. www.whitejadesoft.com
But process explorer is more user friendly that it will first show up a warning that the service might not be able to restart successfully. Below is a sample:
While process hacker will only show a dialog for confirmation like below.
- There is a nice feature in process hacker. See the screen shot below first.
Anywhere if possible, you will see a button (the upper one in the picture) which lets you to browse the folder of the executable file (the. exe itself or its modules ).
This is really nice for developers like me.
The second button in red is to let you find the parent process quickly. Very handy feature!
- Process hacker supports plugins. Although I have not used any plugin so far, I believe to support plugins is a good thing.
- Ui part-process hacker has some problem in its UI: when the "property" dialog (or other dialogs) resizes, the layout may mess up.
- Process hacker has a cool feature that lets you inject DLL into a process. (in case you don't have idea about DLL injection you can read Jeffrey Richter's book)
Here lists only what I have so far. You can download process hacker if you love powerful tools like me. Enjoy!
Read more articles on my blog-http://blog.whitejadesoft.com/