Python Forum

Python Forum > Python Coding > General Coding Help > Windows - Get Handle to Pass as Parameter
Full Version: Windows - Get Handle to Pass as Parameter
You're currently viewing a stripped down version of our content. View the full version with proper formatting.

malonn

Jul-27-2018, 12:30 AM
I'm not sure about how to proceed when dealing with Windows (W10 1803, if that helps). Here's the code I'm trying to work with:
token = ctypes.create_unicode_buffer(1024)
handle = ctypes.windll.Kernel32.GetModuleHandleW()
print(ctypes.windll.Advapi32.OpenProcessToken(handle, 'WRITE_OWNER', token))
print(ctypes.windll.Kernel32.GetLastError())
sys.exit()
The error I get is 6 - unknown handle. So, my question is: how do I get the handle. Eventually, what I want to do is enable the SE_TAKE_OWNERSHIP_NAME privilege and open a registry key with WRITE_OWNER access. Microsoft makes you go through 10 steps to do one simple thing. So, I'm trying to change the privileges of the access token of the script (Python.exe, I guess) so that I can access an administrator level registry key.

malonn

Jul-27-2018, 01:54 PM
Well, I slept on it, woke up and started Googling. Here's what I have:
handle = ctypes.windll.Kernel32.GetCurrentProcess()
print(ctypes.windll.Advapi32.OpenProcessToken(handle, 'TOKEN_QUERY', token))
print(ctypes.windll.Kernel32.GetLastError())
I needed the GetCurrentProcess() function to get the handle. But now I get an ErrorCode 5 - Acess Denied return. I'm an administrator account. The only account on this computer. I would really appreciate a Windows guru or two here. How can I access the token? I've read I can impersonate the LOCAL_SYSTEM account...

By the way: sorry. I know this isn't specifically a Python issue; I just figured there are some experienced programmers here. Where else could I go for help?
Python Forum > Python Coding > General Coding Help > Windows - Get Handle to Pass as Parameter