import ctypes
kfile = pefile.PE(r'Kernel32.dll')
--- *** displays all exports such as *** ---
for export in kfile.DIRECTORY_ENTRY_EXPORT.symbols:
print(export.name)
--- *** executes a command like whoami *** ---
k32.WinExec(b'whoami')
--- *** creates a new folder *** ---
k32.CreateDirectoryW(r'c:\users\win10\testfolder', None)
--- *** prints length of a string *** ---
k32.lstrlenA(b'something')
--- *** start and stop a timer *** ---
start = k32.GetTickCount()
end = k32.GetTickCount()
elaspedTime = (end-start)/1000
--- *** get process id for the python.exe program running this code *** ---
k32.GetCurrentProcessId()
--- *** get current working directory *** ---
s=ctypes.create_string_buffer(50)
k32.GetCurrentDirectoryA(len(s), s)
string = ""
for i in s:
if not i.decode() == "\x00":
string = string + i.decode()
--- *** get environment variables APPDATA value *** --
s=ctypes.create_string_buffer(50)
k32.GetEnvironmentVariableA(b'APPDATA',s,len(s))
string = ""
for i in s:
if not i.decode() == "\x00":
string = string + i.decode()
s=ctypes.create_string_buffer(50)
k32.GetEnvironmentVariableA(b'APPDATA',s,len(s))
string = ""
for i in s:
if not i.decode() == "\x00":
string = string + i.decode()
