admin/ghost
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

add target PID option to CLI

Browse Source
This commit is contained in:
Adir Shitrit
2025-11-08 12:20:02 +02:00
parent db7a60d091
commit 977b3e310a
1 changed files with 18 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

19
ghost-cli/src/main.rs
View File

@@ -24,16 +24,33 @@ fn main() -> Result<()> {
.help("Enable verbose output") .help("Enable verbose output")
.action(clap::ArgAction::SetTrue) .action(clap::ArgAction::SetTrue)
) )
.arg(
Arg::new("pid")
.short('p')
.long("pid")
.value_name("PID")
.help("Target specific process ID")
)
.get_matches(); .get_matches();
let format = matches.get_one::<String>("format").unwrap(); let format = matches.get_one::<String>("format").unwrap();
let verbose = matches.get_flag("verbose"); let verbose = matches.get_flag("verbose");
let target_pid = matches.get_one::<String>("pid");
println!("Ghost v0.1.0 - Process Injection Detection\n"); println!("Ghost v0.1.0 - Process Injection Detection\n");
let scan_start = Instant::now(); let scan_start = Instant::now();
let mut engine = DetectionEngine::new(); let mut engine = DetectionEngine::new();
let processes = process::enumerate_processes()?;
let processes = if let Some(pid_str) = target_pid {
let pid: u32 = pid_str.parse().expect("Invalid PID format");
process::enumerate_processes()?
.into_iter()
.filter(|p| p.pid == pid)
.collect()
} else {
process::enumerate_processes()?
};
println!("Scanning {} processes...\n", processes.len()); println!("Scanning {} processes...\n", processes.len());