Giters

MeCRO-DEV / PSShark

This is a packet capture tool using Powershell and Windows net shell

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

netshpacket-analyserpacket-capturepacket-snifferpowershellwireshark

PSShark

This is a packet capture tool using Powershell and Windows net shell. It can be used wherever installing Wireshark is impossible

Dependency: etl2pcapng from Microsoft to convert etl file to pcap format https://github.com/microsoft/etl2pcapng

The etl2pcapng has been embedded into the script with base64 encoding. You don't need to download it.

Usage: psshark.ps1 IF_IP_ADDRESS [WORKING_FOLDER_PATH]

Default working folder is c:\pscap

Screenshot:

image

About

This is a packet capture tool using Powershell and Windows net shell

netshpacket-analyserpacket-capturepacket-snifferpowershellwireshark

License:MIT License

Languages

Language:PowerShell 100.0%