Get-NetworkConnection icon indicating copy to clipboard operation
Get-NetworkConnection copied to clipboard

Published 20 hours ago verified publisher icon IllusiveNetworks-Labs

Metadata

Edited version of Lee Christensen's Get-NetworkConnection which includes timestamp for each network connection

Get-NetworkConnection

Get-NetworkConnection is a PowerShell script used to return current TCP and UDP connections, originally developed by Lee Christensen (@tifkin_) This is an edited version of the script which also includes a Timestamp for each connection.

Additional reading material on the addition of timestamps evidence to the tool, can be found in our blog - Why and How to Extract Network Connection Timestamps for DFIR Investigations.

How to use

Usage: Get-NetworkConnection

Example

alt tag

Author

Hadar Yudovich

License

This project is licensed under the BSD 3-clause license - see the LICENSE file for details

Contributors

Original Developers:

  • Lee Christensen (@tifkin_)
  • Matthew Graeber (@mattifestation)

Illusive Networks Research team members:

  • Dolev Ben Shushan
  • Tom Kahana
  • Tom Sela

Metadata

34
Stars
3
Forks
Watchers

Owner

verified publisher icon IllusiveNetworks-Labs

Metadata

Edited version of Lee Christensen's Get-NetworkConnection which includes timestamp for each network connection

Back