Author: a-mahint
Subject: Extracting Useful Procmon.exe data
Posted: 14 June 2013 at 12:15am
I am wondering if anyone has ever attempted to extract some of the data that is found using Procmon.exe?
I am trying to build a simple PowerShell progress bar to basically be an adapter on top of an underlying DISM.exe Image capture/application.
My plan is to somehow extract the Offset property under the Detail field in Process Monitor and use it to construct a percentage of total bytes transferred. Basically do:
Percentage Done = (Offset)/(Total Size of image in bits) * 100
This will give me a fairly accurate number. However, I have no idea how to get to this offset value. Would the only way to be to create a low level C program that does basically what Process Monitor does to get that info? Or is there an easier utility like powershell that can get it also?
Suggestions?
Subject: Extracting Useful Procmon.exe data
Posted: 14 June 2013 at 12:15am
I am wondering if anyone has ever attempted to extract some of the data that is found using Procmon.exe?
I am trying to build a simple PowerShell progress bar to basically be an adapter on top of an underlying DISM.exe Image capture/application.
My plan is to somehow extract the Offset property under the Detail field in Process Monitor and use it to construct a percentage of total bytes transferred. Basically do:
Percentage Done = (Offset)/(Total Size of image in bits) * 100
This will give me a fairly accurate number. However, I have no idea how to get to this offset value. Would the only way to be to create a low level C program that does basically what Process Monitor does to get that info? Or is there an easier utility like powershell that can get it also?
Suggestions?
