1*7dc08ffcSJunyu Lai # Config 2*7dc08ffcSJunyu Lai $urlPath = "https://github.com/hsluoyz/WinDump/releases/download/v0.2/WinDump-for-Npcap-0.2.zip" 3*7dc08ffcSJunyu Lai $checksum = "9182934bb822511236b4112ddaa006c95c86c864ecc5c2e3c355228463e43bf2" 4*7dc08ffcSJunyu Lai 5*7dc08ffcSJunyu Lai ############ 6*7dc08ffcSJunyu Lai ############ 7*7dc08ffcSJunyu Lai # Download the file 8*7dc08ffcSJunyu Lai wget $urlPath -UseBasicParsing -OutFile $PSScriptRoot"\npcap.zip" 9*7dc08ffcSJunyu Lai Add-Type -AssemblyName System.IO.Compression.FileSystem Unzipnull10*7dc08ffcSJunyu Laifunction Unzip 11*7dc08ffcSJunyu Lai { 12*7dc08ffcSJunyu Lai param([string]$zipfile, [string]$outpath) 13*7dc08ffcSJunyu Lai 14*7dc08ffcSJunyu Lai [System.IO.Compression.ZipFile]::ExtractToDirectory($zipfile, $outpath) 15*7dc08ffcSJunyu Lai } 16*7dc08ffcSJunyu Lai Unzip $PSScriptRoot"\npcap.zip" $PSScriptRoot"\npcap" 17*7dc08ffcSJunyu Lai Remove-Item $PSScriptRoot"\npcap.zip" 18*7dc08ffcSJunyu Lai # Now let's check its checksum 19*7dc08ffcSJunyu Lai $_chksum = $(CertUtil -hashfile $PSScriptRoot"\npcap\x64\WinDump.exe" SHA256)[1] -replace " ","" 20*7dc08ffcSJunyu Lai if ($_chksum -ne $checksum){ 21*7dc08ffcSJunyu Lai echo "Checksums does NOT match !" 22*7dc08ffcSJunyu Lai exit 23*7dc08ffcSJunyu Lai } else { 24*7dc08ffcSJunyu Lai echo "Checksums matches !" 25*7dc08ffcSJunyu Lai } 26*7dc08ffcSJunyu Lai # Finally, move it and remove tmp files 27*7dc08ffcSJunyu Lai Move-Item -Force $PSScriptRoot"\npcap\x64\WinDump.exe" "C:\Windows\System32\windump.exe" 28*7dc08ffcSJunyu Lai Remove-Item $PSScriptRoot"\npcap" -recurse 29