Network Traffic per process/application windows

From your comments, I gather you are trying to capture the network traffic generated by the application you are developing from within the application itself. If so, I think this may be a question better suited to StackOverflow since that is a developer community. Such introspection would probably require the use of ETW (Event Tracing for Windows), but again I can't be certain. This question on S.O. may be of some help.

Putting that aside for one moment and focussing on the admin side of things (which is what you tend to get if you ask questions here), I would like to turn your attention to the netsh trace command and Microsoft Network Monitor (Netmon). You can capture directly from NetMon at the time you want to do it, or you can give yourself more flexibility with the netsh trace command by triggering it automatically.

If this is of interest, you can do:

netsh trace start capture=yes traceFile=c:\tracefolder\tracename.etl

to start a capture, and then:

netsh trace stop

when you are ready. There are other options, so you can see the manual using netsh trace /?

Once you have your capture by whatever means, you can then use NetMon to filter on the executable of your application to examine the network traffic generated by it during the period you were monitoring.

Related videos on Youtube

10 : 07

5 Basic Networking commands for everyone (2021) | How to troubleshoot network issues on Windows?

IT k Funde

595

04 : 37

Windows Network Monitor: Intro & Simple Uses

SMBitSimplified

104

04 : 49

Network Traffic Bandwidth Monitoring - NTOP PFSENSE

Torogi Pro

65

17 : 36

Windows Ransomware Detection with Splunk (2 of 6) – Unusual Traffic – Tor, SMB, DNS, HTTP

Splunk

6

02 : 58

Network Traffic per process/application windows (3 Solutions!!)

Roel Van de Paar

1

Author by

xlharambe

Updated on September 18, 2022