packet sniffer
-
hi all, well i'm developing a simple packet sniffer using winpcap in VC++ environment.. where packets are captured and filtered.... i'm able to filter using port no,ip address and protocol but what i'm suppose to do is to filter packets using process ID which i'm unable to do..so please any one can help me as soon as possible... thanks in advance regards sura sura
-
hi all, well i'm developing a simple packet sniffer using winpcap in VC++ environment.. where packets are captured and filtered.... i'm able to filter using port no,ip address and protocol but what i'm suppose to do is to filter packets using process ID which i'm unable to do..so please any one can help me as soon as possible... thanks in advance regards sura sura
You could use GetTcpTableEx()/GetUdpTableEx() to get a list of the TCP/UDP connections and their processes. Assuming your app is to run on minimum OS of XP, of course. Alternativly ud need to develop a low level driver to do that.