Fortytwo - Answer to the Ultimate Question of Life, the Universe, and Everything

User Tools

Site Tools

Trace:
powershell

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
powershell [2022/11/20 10:19] – [Simple TCP Portscan] baumipowershell [2022/11/20 10:19] (current) – [Convert to PCAP] baumi
Line 27: Line 27:
 ===== Packet Capture ===== ===== Packet Capture =====
 ==== Capture ==== ==== Capture ====
 +<code powershell>
 $duration=90 $duration=90
 $env:HostIP = ( $env:HostIP = (
Line 39: Line 40:
 Start-Sleep $duration Start-Sleep $duration
 netsh trace stop netsh trace stop
 +</code>
 ==== Convert to PCAP ==== ==== Convert to PCAP ====
 https://github.com/microsoft/etl2pcapng/releases https://github.com/microsoft/etl2pcapng/releases
-<code> +<code powershell
-https://github.com/microsoft/etl2pcapng/releases/download/v1.9.0/etl2pcapng.exe+Invoke-Webrequest -O etl2pcapng.exe https://github.com/microsoft/etl2pcapng/releases/download/v1.9.0/etl2pcapng.exe
 ./etl2pcapng.exe c:\temp\capture.etl c:\temp\capture.pcap ./etl2pcapng.exe c:\temp\capture.etl c:\temp\capture.pcap
 </code> </code>
powershell.1668935947.txt.gz · Last modified: by baumi
Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki