Function Name
NtOpenProcess
Description
NtOpenProcess is used to get a handle on a process. This function is commonly used as part of process injection.
Library
Ntdll.dll
Associated Attacks
Injection
Documentation
http://undocumented.ntinternals.net/index.html?page=UserMode%2FUndocumented%20Functions%2FNT%20Objects%2FProcess%2FNtOpenProcess.html
Created: 2021-10-30
Last Update: 2021-10-30
Credits: mr.d0x