标题: windbg的"!handle"命令所支持的类型名

https://scz.617.cn/windows/201710201500.txt

!handle Handle KMFlags Process TypeName

这个TypeName，帮助手册说是大小写敏感，但逆向其实现会发现大小写不敏感，实测
也是。帮助手册中只提供了很小一部分TypeName，下面这个列表取自Win10:

Type
Directory
SymbolicLink
Token
Job
Process
Thread
Partition
UserApcReserve
IoCompletionReserve
ActivityReference
PsSiloContextPaged
PsSiloContextNonPaged
DebugObject
Event
Mutant
Callback
Semaphore
Timer
IRTimer
Profile
KeyedEvent
WindowStation
Desktop
Composition
RawInputManager
CoreMessaging
TpWorkerFactory
Adapter
Controller
Device
Driver
IoCompletion
WaitCompletionPacket
File
TmTm
TmTx
TmRm
TmEn
Section
Session
Key
RegistryTransaction
ALPC Port
EnergyTracker
PowerRequest
WmiGuid
EtwRegistration
EtwSessionDemuxEntry
EtwConsumer
DmaAdapter
DmaDomain
PcwObject
FilterConnectionPort
FilterCommunicationPort

如果发现"!handle"不能对某些常见类型(比如File)进行有效过滤，那是你碰上BUG了，
Win10已无此BUG。