Process hacker-another useful system tool

Source: Internet
Author: User

[Mirror- /? P = 208]

You can get the tool from here: Enjoy it!

You may have already used process Explorer (Mark russinovich, My idol) from (acquired by Microsoft already). Process Explorer is a powerful tool I 've used for couple of years. Frequently times it rescued me in trouble shooting.


Process explorer is good enough. Why do you want another similar tool? Okay, let's see what process hacker has provided.


Compared with process explorer, process hacker:

  • Implements almost all of the functionality offered by process explorer, plus more advanced features.
  • Has advanced string scanning capabilities, as well as regular expression filtering.
  • Allows you to see what a thread is waiting on.
  • Highlights relocated and. Net DLLs.
  • Allows you to connect to other sessions, just like Windows Task Manager can.
  • Shows symbolic access masks (e.g.Read, Write), Rather than just numbers (e.g.0x12019f).
  • Shows names for Transaction Manager objects and ETW registration objects.
  • Shows detailed token information, as well as allowing privileges to be enabled and disabled.
  • Shows information for POSIX processes.
  • Starts around 5 times faster than process explorer.
  • Has around 8 times less background CPU usage.

Yeah! It provides some fantastic functionalities. below lists my favorite ones:

  • Allows you to see what a thread is waiting on.
  • Starts around 5 times faster than process explorer.


Here is a screen shot of process hacker-


Here are some comments I have:

  • It's a pity that both process explorer and process hacker failed to restart Windows service for me.

But process explorer is more user friendly that it will first show up a warning that the service might not be able to restart successfully. Below is a sample:


While process hacker will only show a dialog for confirmation like below.


  • There is a nice feature in process hacker. See the screen shot below first.

Anywhere if possible, you will see a button (the upper one in the picture) which lets you to browse the folder of the executable file (the. exe itself or its modules ).

This is really nice for developers like me.

The second button in red is to let you find the parent process quickly. Very handy feature!


  • Process hacker supports plugins. Although I have not used any plugin so far, I believe to support plugins is a good thing.
  • Ui part-process hacker has some problem in its UI: when the "property" dialog (or other dialogs) resizes, the layout may mess up.
  • Process hacker has a cool feature that lets you inject DLL into a process. (in case you don't have idea about DLL injection you can read Jeffrey Richter's book)


Here lists only what I have so far. You can download process hacker if you love powerful tools like me. Enjoy!

Read more articles on my blog-

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.