From 6e92fba2ece4d5681bbba889ecbe815db6eae771 Mon Sep 17 00:00:00 2001
From: diversenok <30962924+diversenok@users.noreply.github.com>
Date: Thu, 27 Aug 2020 17:29:54 +0200
Subject: [PATCH] Update readme

---
 Readme.md | 16 ++++++++++++----
 1 file changed, 12 insertions(+), 4 deletions(-)

diff --git a/Readme.md b/Readme.md
index 6176789..dd81a2c 100644
--- a/Readme.md
+++ b/Readme.md
@@ -1,8 +1,16 @@
 # Things-AppContainer-Knows
 
-My collection of tricks that allow a program to retrieve peculiar details about the system even from a restricted environment of a low-privileged AppContainer.
+Here is my collection of tricks that allow a program to retrieve peculiar details about the system even from a restricted environment of a low-privileged AppContainer.
 
 ### Features
- - Enumeration of processes (PID, image name, image file location)
- - Enumeration of threads (TID, per process)
- - Enumeration of loaded modules (file name, per process, might be incomplete)
\ No newline at end of file
+ - [x] Listing all processes (PID, image name, file location)
+ - [ ] Listing all threads per-process (TID only)
+ - [ ] Listing loaded modules per-process (filename, sometimes base address, might be incomplete)
+ - [ ] Listing services within each svchost process
+
+See the [releases](https://github.com/diversenok/Things-AppContainer-Knows/releases) page to experiment with it yourself.
+
+### Screenshots
+Here you can see a complete list of processes on the system from a low-privileged AppContainer sandbox. 
+
+![](https://user-images.githubusercontent.com/30962924/91461377-31aff480-e889-11ea-87b9-7907651da219.png)