Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

How to clear a process command line?

Tags:

c++

command-line

windows

command-line-arguments

winapi

I would like to clear the command line of my process from within. For example, when viewing my process in Task Manager/Process Explorer, the command line entry would be empty.

I would like to do this within the currently running process rather than restarting the process if possible.

like image 856
Joe Jordan Avatar asked Oct 21 '10 23:10

Joe Jordan

People also ask

How can kill process in CMD?

There are two commands used to kill a process: kill – Kill a process by ID. killall – Kill a process by name.

What is the clear command in CMD?

In computing, CLS (for clear screen) is a command used by the command-line interpreters COMMAND.COM and cmd.exe on DOS, Digital Research FlexOS, IBM OS/2, Microsoft Windows and ReactOS operating systems to clear the screen or console window of commands and any output generated by them.

How do I kill a process in bash?

On Unix-like operating systems, kill is a builtin command of the Bash shell. It sends a signal to a process. This page covers the bash builtin version of kill, which is distinct from the standalone binary executable, /bin/kill. To figure out which of these is the default kill on your system, run type kill.

1 Answers

I suppose you have to modify the RTL_USER_PROCESS_PARAMETERS part of the PEB of your process (see http://en.wikipedia.org/wiki/Process_Environment_Block for example and http://undocumented.ntinternals.net/UserMode/Undocumented%20Functions/NT%20Objects/Process/PEB.html). You can try to use NtQueryInformationProcess to get PEB. Then you can modify ProcessParameters.CommandLine. I hope it will work.

UPDATED: I verified my suggestion. It works. The following test program demonstrate this:

#include <Windows.h>
#include <Winternl.h> // for PROCESS_BASIC_INFORMATION and ProcessBasicInformation
#include <stdio.h>
#include <tchar.h>

typedef NTSTATUS (NTAPI *PFN_NT_QUERY_INFORMATION_PROCESS) (
    IN HANDLE ProcessHandle,
    IN PROCESSINFOCLASS ProcessInformationClass,
    OUT PVOID ProcessInformation,
    IN ULONG ProcessInformationLength,
    OUT PULONG ReturnLength OPTIONAL);

int main()
{
    HANDLE hProcess = OpenProcess (PROCESS_QUERY_INFORMATION | PROCESS_VM_READ,
                                   FALSE, GetCurrentProcessId());
    PROCESS_BASIC_INFORMATION pbi;
    ULONG ReturnLength;
    PFN_NT_QUERY_INFORMATION_PROCESS pfnNtQueryInformationProcess =
        (PFN_NT_QUERY_INFORMATION_PROCESS) GetProcAddress (
            GetModuleHandle(TEXT("ntdll.dll")), "NtQueryInformationProcess");
    NTSTATUS status = pfnNtQueryInformationProcess (
        hProcess, ProcessBasicInformation,
        (PVOID)&pbi, sizeof(pbi), &ReturnLength);
    // remove full information about my command line
    pbi.PebBaseAddress->ProcessParameters->CommandLine.Length = 0;

    getchar(); // wait till we can verify the results
    return 0;
}

If we start the program with some parameters we will see

alt text

instead of the following seen before

alt text

like image 145
Oleg Avatar answered Oct 11 '22 05:10

Oleg
Sign in to Comment

Related questions

Conditional operator issue
How to slice with for-range loop ? C++0x
What are the pros and cons of using Matrices, Euler Angles, and or Quaternions for rotation representation? [closed]
VS2008: Can I build a project with 2 CPP files of the same name in different folders?
Preventing implicit cast of numerical types in constructor in C++
What's the usage if I provide an implementation for a pure virtual function in C++
Refactor the following two C++ methods to move out duplicate code
Advantage of using a static member function instead of an equivalent non-static member function?
C++0x threading
Porting windows code, what to use instead of __int64 _tmain and _TCHAR*?
Polymorphic Enum in C++
Where can I find the implementation for std::string
Getting current time of a different timezone using C++
Are tokens after #endif legal?
Operator precedence for "<<" and "++" in VS2008 with optimization
codingbat-like site for C++ [closed]
Why do we need "this pointer adjustor thunk"?
How to turn System::String^ into std::string?
How to reset SIGINT to default after pointing it some user-defined handler for some time?
What does it mean if a method call starts with two colons?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!