# T1010: Application Window Discovery

Adversaries may attempt to get a listing of open application windows. Window listings could convey information about how the system is used or give context to information collected by a keylogger.

**Example**

With Tasklist we can view the running applications and try to get information on how the Workstation is utilized for enumeration and see if it’s a potential target for Exploitation or other techniques.

![](https://315180959-files.gitbook.io/~/files/v0/b/gitbook-legacy-files/o/assets%2F-MRh03Vwd4nuiUi3Oje7%2F-MS04YiM_ssDKyBZHpvW%2F-MS04hSZ11ToSryjE0PW%2Fimage.png?alt=media\&token=a2fac8da-3f12-4b2c-8adc-688ccaaead62)

**Key loggers can be used as well to grab information on what the user is working on and see if this info is valuable.**