Best IT Recipes

What (software) usb removal tools are available for windows?

Are there any software drivers for Windows 7 (64-bit) that can transfer data transferred between some software and a USB device?

I tried snoopy ( http://sourceforge.net/projects/usbsnoop/ ), but I can't get it to work. I may need to go down the path of installing an earlier version of windows.

Any other suggestions?

+44
windows usb driver sniffer
Feb 23 '10 at 1:39
source share
8 answers

There was a lot of successful work with this tool many years ago. http://www.sysnucleus.com/

+9
Feb 23 '10 at 1:44
source share

USBPCap + Wireshark is a great new open source solution that I recommend.

I had good results with Event Tracing in Windows (ETW) as described in ( link ) (part 1) and in part 2 of this publication. I remember that the installation was somewhat involved.

USBlyzer and USBTrace are both good products, but they come with a price tag of $ 200. They both offer demos, although I had good results with them. They are very easy to configure and use.

For a list of other tools, see here: here

+5
Jun 07 '13 at 16:57
source share

Here's a tutorial on installing and using the new Windows 7 network monitor called Netmon.

http://blogs.msdn.com/b/usbcoreblog/archive/2009/12/04/etw-in-the-windows-7-usb-core-stack.aspx

I have not tried to see if it works. When I do this, I will send a message stating whether it works with Windows 7 x64.

EDIT:

It worked on my Parallels Win7 x64 virtual machine.

The biggest drawback was the huge number of packages that he registered. To help with this, the following filter can only retrieve packets with your USB VID (seller ID), where vid is 0xABCD.

// Following searches frame for hex data of 0xAB 0xCD ContainsBin(FrameData, hex, "AB CD")

Note. . As in the tutorial, to register usb packages, use the following commands on the cmd command line as an administrator:

 Logman start Usbtrace -p Microsoft-Windows-USB-USBPORT -o usbtrace.etl -ets -nb 128 640 -bs 128 Logman update Usbtrace -p Microsoft-Windows-USB-USBHUB -ets //Perform desired usb activities Logman stop Usbtrace -ets

EDIT 2

UsbSnoop is another free option. I confirmed that it works on my Win7 x64 machine.

http://www.pcausa.com/Utilities/UsbSnoop/

+4
Sep 19
source share

busdog: http://code.google.com/p/busdog/

You need to enable test signature for 64-bit, but

+3
Jun 05 2018-10-10T00:
source share

USBPcap: http://desowin.org/usbpcap/ Works under XP, Vista, 7 and 8.

Work continues, although there is still no end-user installer.

+2
Mar 22 '13 at 16:30
source share

Take a look at Compuware's WDMSniffer . It supports IRP, USB, 1394 (Firewire), SCSI, NDIS, and TDI.

+1
Feb 23 '10 at 9:25
source share

Try SourceUSB from SourceQuest. They also have a demo version.

+1
Jun 08 '10 at 9:39
source share

There is devon on the windows website, I think they call it.

Is this what you want?

0
Feb 27 '10 at 9:53 on
source share


More articles:


All Articles