handle.exe is a tool provided by the Sysinternals Suite that lists handles opened by processes. It may also be used to close open handles for malware remediation purposes.
https://learn.microsoft.com/en-us/sysinternals/downloads/handle
Relevant Topics
Program Database
2024-08-05 pe windows
Dynamic Link Library
0001-01-01 pe windows
LoadLibrary
0001-01-01 winapi windows
PEBear
0001-01-01 malwareanalysis reversing pe windows
Portable Executable
0001-01-01 pe windows
Recent Posts
Linux Persistence: Modular Software
2025-04-17 DFIR CTF persistence linux persistence apache asterisk
Linux Persistence: Web Shells
2025-04-16 DFIR persistence webshell linux persistence webshell apache nginx PHP
Linux Persistence: Rootkits
2025-04-15 DFIR persistence rootkit LKM linux persistence LKM rootkit LD_PRELOAD kprobe ftrace ld.so hooking
Defanging Linux LKM Rootkits With cleanup_module()
2025-04-05 Linux LKM rootkits EDR hooks incident response Linux LKM rootkit