capstone/bindings/powershell/README

Usage

Invoke-Capstone is ready for use, there are two options to access the capstone
library from PowerShell:

  * Script dot sourcing:

     PS C:\> . .\Invoke-Capstone.ps1

  * Adding the script to one of the PowerShell module directories:

     # Global PSModulePath path
     %Windir%\System32\WindowsPowerShell\v1.0\Modules

     # User PSModulePath path
     %UserProfile%\Documents\WindowsPowerShell\Modules

Notes

  * Invoke-Capstone drops the Capstone DLL, x32/64 respectively, to the user's
    temporary folder the first time it runs. Further runs will use this cached DLL.

  * The "Out-UnmanagedDll" script can be used to generate a compressed DLL which
    allows for easy integration with Invoke-Capstone. This script is based on
    @mattifestation’s post here
    http://www.exploit-monday.com/2012/12/in-memory-dll-loading.html.

     # Redirect script output to file
     PS C:\> Out-UnmanagedDll -FilePath C:\Some\Path\capstone.dll
-												Binding.README

											
										
										
											2016-11-04 04:51:48 +08:00
+								Usage
-												Binding.README

											
										
										
											2016-11-04 04:49:01 +08:00
-												Binding.PowerShell-Script

Added script to generate compressed DLL output & update for README

											
										
										
											2016-11-04 17:56:47 +08:00
+								Invoke-Capstone is ready for use, there are two options to access the capstone
 								library from PowerShell:
-												Binding.README

											
										
										
											2016-11-04 04:29:37 +08:00
-												Binding.README

											
										
										
											2016-11-04 04:49:01 +08:00
+								  * Script dot sourcing:
-												Binding.README

											
										
										
											2016-11-04 04:29:37 +08:00
-												Binding.README

											
										
										
											2016-11-04 04:51:48 +08:00
+								     PS C:\> . .\Invoke-Capstone.ps1
-												Binding.README

											
										
										
											2016-11-04 04:29:37 +08:00
-												Binding.README

											
										
										
											2016-11-04 04:49:01 +08:00
+								  * Adding the script to one of the PowerShell module directories:
 								     # Global PSModulePath path
 								     %Windir%\System32\WindowsPowerShell\v1.0\Modules
 								     # User PSModulePath path
 								     %UserProfile%\Documents\WindowsPowerShell\Modules
-												Binding.README

											
										
										
											2016-11-04 04:29:37 +08:00
-												Binding.README

											
										
										
											2016-11-04 04:51:48 +08:00
+								Notes
-												Binding.README

											
										
										
											2016-11-04 04:29:37 +08:00
-												Binding.PowerShell-Script

Added script to generate compressed DLL output & update for README

											
										
										
											2016-11-04 17:56:47 +08:00
+								  * Invoke-Capstone drops the Capstone DLL, x32/64 respectively, to the user's
 								    temporary folder the first time it runs. Further runs will use this cached DLL.
 								  * The "Out-UnmanagedDll" script can be used to generate a compressed DLL which
 								    allows for easy integration with Invoke-Capstone. This script is based on
 								    @mattifestation’s post here
 								    http://www.exploit-monday.com/2012/12/in-memory-dll-loading.html.
 								     # Redirect script output to file
 								     PS C:\> Out-UnmanagedDll -FilePath C:\Some\Path\capstone.dll