Capturing Virtual Machine Blue Screens via Powershell


Eric Sloof at ntpro.nl has a nice post on how to capture screen shots of virtual machine blue screens using Powershell.  You can find the code here.

He then incorporated a Powershell script from Carter Shanklin that pushes a screenshot through Microsoft Office Document Imaging Library (MODI), OCR software found in Office 2003+, to extract the text from the image.

Very nice. Definitely go download his application, the Virtual Machine Blue Screen Detector.  Detailed post here.

The final product, which reads out the BSOD can be found here.

One Response to “Capturing Virtual Machine Blue Screens via Powershell”

  1. Sahmeepee Says:

    You might be interested in a tool NirSoft released not long ago called BlueScreenView which takes the info in minidump files and uses them to reconstruct the BSoD screen (amongst other more useful things).

    Like all the NirSoft tools I’ve used this is a really basic standalone app, so it’s handy for the USB toolkit :)

    I’ll let you google it rather than condemn this comment to spam filtration!


Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

Follow

Get every new post delivered to your Inbox.

Join 32 other followers

%d bloggers like this: