Modules
App User

App User

Fills user information from the PID of an application

windows linux

AppUserModule fills user information from the PID of an application

Details

On Linux, it uses the /proc/\/status entrypoint. On Windows, it calls OpenProcessToken, GetTokenInformation and LookupAccountSidW.

On windows, even if the agent is run as administrator, it may not have the required privileges to scan some processes like wininit.exe, services.exe.

Dependencies

Situation
Backends
Configuration
Installation
Quick start
Roadmap

Guides

FastAPI jq one-liners

Modules

Modules reference App User ARP Chassis Docker DPKG Host Basic Host CPU Host Disk Host GPU Host Network MSI Netstat Ping Reverse Lookup RPM SNMP SSH TCP Scan Zypper

Developer

Overview Architecture Contributing Module Store