apps/linker
1
0
Fork 0
mirror of https://github.com/snltty/linker.git synced 2025-11-01 13:04:00 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
0f9c06e52455153ae4ed90bac177be9cf4682cf8
linker/cmonitor/plugins/active/report/ActiveWindowWindows.cs
snltty 0f9c06e524 给桌面共享增加代理功能
2024-04-13 17:06:26 +08:00

283 lines
9.0 KiB
C#
Raw Blame History

using cmonitor.config;
using common.libs;
using common.libs.winapis;
using Microsoft.Win32;
using System.Diagnostics;
using System.Runtime.InteropServices;
using System.Text;
using System.Threading;
namespace cmonitor.plugins.active.report
{
public sealed class ActiveWindowWindows : IActiveWindow
{
public ActiveWindowWindows(Config config)
{
CreateKey();
DisallowRunClear();
DisallowRun(false);
InitDriver();
}
private void CreateKey()
{
try
{
if (OperatingSystem.IsWindows())
{
RegistryKey key = Registry.CurrentUser.OpenSubKey(@"Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\Explorer", true);
RegistryKey disallowRun = key.OpenSubKey("DisallowRun");
if (disallowRun == null)
{
key.CreateSubKey("DisallowRun");
}
}
}
catch (Exception)
{
}
}
public void DisallowRun(string[] names)
{
DisallowRun(false);
DisallowRunClear();
if (names.Length > 0)
{
DisallowRun(true);
DisallowRunFileNames(names);
}
Task.Run(() =>
{
CommandHelper.Windows(string.Empty, new string[] { "gpupdate /force" });
});
}
private void DisallowRunClear()
{
try
{
if (OperatingSystem.IsWindows())
{
RegistryKey key = Registry.CurrentUser.OpenSubKey(@"Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\Explorer\\DisallowRun", true);
if (key != null)
{
string[] names = key.GetValueNames();
if (names != null)
{
foreach (string name in names)
{
key.DeleteValue(name, false);
}
}
}
}
}
catch (Exception ex)
{
Logger.Instance.Error($"application disallow clear {ex}");
}
}
private void DisallowRun(bool value)
{
try
{
if (OperatingSystem.IsWindows())
{
RegistryKey key = Registry.CurrentUser.OpenSubKey(@"Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\Explorer", true);
if (key != null)
{
key.SetValue("DisallowRun", value ? 1 : 0, RegistryValueKind.DWord);
Task.Run(() =>
{
CommandHelper.Windows(string.Empty, new string[] { "gpupdate /force" });
});
}
}
}
catch (Exception)
{
}
}
private void DisallowRunFileNames(string[] filenames)
{
try
{
if (OperatingSystem.IsWindows())
{
RegistryKey key = Registry.CurrentUser.OpenSubKey(@"Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\Explorer\\DisallowRun", true);
if (key != null)
{
foreach (string filename in filenames)
{
key.SetValue(filename, filename, RegistryValueKind.String);
}
}
}
}
catch (Exception ex)
{
Logger.Instance.Error($"application disallow {string.Join(",", filenames)} {ex}");
}
}
const int nChars = 256;
private StringBuilder buff = new StringBuilder(nChars);
public ActiveWindowInfo GetActiveWindow()
{
ActiveWindowInfo activeWindowInfo = new ActiveWindowInfo();
nint handle = User32.GetForegroundWindow();
User32.GetWindowThreadProcessId(handle, out uint id);
if (User32.GetWindowText(handle, buff, nChars) > 0)
{
Process p = Process.GetProcessById((int)id);
string desc = string.Empty;
string filename = string.Empty;
try
{
ProcessModule main = p.MainModule;
if (main != null)
{
filename = main.FileName;
desc = main.FileVersionInfo.FileDescription;
}
}
catch (Exception)
{
}
activeWindowInfo.Title = buff.ToString();
activeWindowInfo.FileName = Path.GetFileName(filename);
activeWindowInfo.Desc = desc;
activeWindowInfo.Pid = id;
}
else
{
activeWindowInfo.Title = string.Empty;
activeWindowInfo.FileName = string.Empty;
activeWindowInfo.Desc = string.Empty;
activeWindowInfo.Pid = 0;
}
return activeWindowInfo;
}
public int GetWindowCount()
{
int length = 0;
User32.EnumWindows((hWnd, lParam) =>
{
try
{
if (User32.IsWindowVisible(hWnd) && User32.GetWindowTextLength(hWnd) > 0)
{
length++;
}
}
catch (Exception)
{
}
return true;
}, nint.Zero);
return length;
}
public Dictionary<uint, string> GetWindows()
{
Dictionary<uint, string> dic = new Dictionary<uint, string>();
StringBuilder lpString = new StringBuilder(256);
User32.EnumWindows((hWnd, lParam) =>
{
try
{
if (User32.IsWindowVisible(hWnd) && User32.GetWindowTextLength(hWnd) > 0)
{
User32.GetWindowText(hWnd, lpString, 256);
User32.GetWindowThreadProcessId(hWnd, out uint id);
dic[id] = lpString.ToString();
}
}
catch (Exception)
{
}
return true;
}, nint.Zero);
return dic;
}
private void InitDriver()
{
AppDomain.CurrentDomain.ProcessExit += (sender, e) =>
{
CommandHelper.Windows(string.Empty, new string[] { "sc stop cmonitor.killer & sc delete cmonitor.killer" }, true);
};
Console.CancelKeyPress += (sender, e) =>
{
CommandHelper.Windows(string.Empty, new string[] { "sc stop cmonitor.killer & sc delete cmonitor.killer" }, true);
};
Task.Run(() =>
{
try
{
Logger.Instance.Info($"killer stoping");
CommandHelper.Windows(string.Empty, new string[] { "sc stop cmonitor.killer & sc delete cmonitor.killer" }, true);
Logger.Instance.Info($"killer stoped");
Logger.Instance.Info($"killer starting");
string sourcePath = Path.GetFullPath(Path.Join("./", "killer.sys"));
string distPath = $"{Environment.SystemDirectory}\\drivers\\killer.sys";
try
{
File.Delete("killer-temp.sys");
}
catch (Exception)
{
}
try
{
File.Copy(sourcePath, distPath, true);
}
catch (Exception)
{
}
int val = LoadDriver("cmonitor.killer", distPath);
Logger.Instance.Info($"killer started->{val}");
}
catch (Exception ex)
{
Logger.Instance.Error(ex);
}
});
}
public void Kill(uint pid)
{
Task.Run(() =>
{
try
{
Kernel32.Kill(pid);
int res = ProcessKiller(pid);
}
catch (Exception ex)
{
Logger.Instance.Error(ex);
}
});
}
[DllImport("cmonitor.killer.dll")]
public static extern int LoadDriver(string serviceName, string driverPath);
[DllImport("cmonitor.killer.dll")]
public static extern int ProcessKiller(uint pid);
}
}
Reference in New Issue View Git Blame Copy Permalink