WhoYouCalling v1.3.2 💡

Features ✨:

• Added third monitoring option called illuminate. By passing capital i flag (-I), WhoYouCalling records every TCPIP and DNS activity made by every running process on the machine. Can be used with packet capture. Ideally used for incident response, or simply when you're bored or curious for what processes are doing on your machine. This option is currently experimental so please report any issues that you may experience.
• Changed the flag from --execnames to --names where a case insensitive pattern can be applied being checked towards processname and executable file name.
• Enriched console output with spinner wheel and line indicating how many processes are being processed for outputting their results.
  (Updated the release for v1.3.1 and v1.3.2 to remove creating a filtered pcap based on the network traffic for all processes when using illuminate since that's not needed. I recommend using -s or --savefullpcap for retaining pcap with including traffic. Also added fail-safe handling for cataloging events that may be subjected to rare race condition events.

Get-FileHash -path .\WhoYouCalling-1.3*-selfcontained.zip -algo sha256

Algorithm       Hash                                                                   Path                            
---------       ----                                                                   ----                            
SHA256          1EF5FA3D51BA2282C9C709B7DECC48E896DF79C589729C86FC353D0DC6A0C712       WhoYouCalling-1.3.2-x64-selfcontained.zip
SHA256          6D1BD2E1E5A2497CD3CC22C92C87D224880221CD08D7711A83AF11713833400F       WhoYouCalling-1.3.2-x86-selfcontained.zip