I'm pretty new to ETW and trying to log network traffic from a specific process.
I was able to get the network activity using the "Microsoft-Windows-Winsock-AFD" provider. however, I'm having trouble getting additional data such as remote address and the number of bytes sent/received.
Any help would be appreciated. I know that this is not technically an issue, but the official email didn't work.
Hi,
Never mind, it was my mistake.
I'm pretty new to ETW and trying to log network traffic from a specific process.I was able to get the network activity using the "Microsoft-Windows-Winsock-AFD" provider. however, I'm having trouble getting additional data such as remote address and the number of bytes sent/received.Any help would be appreciated. I know that this is not technically an issue, but the official email didn't work.Thanks.