0

Hy folks,

I'm kinda new to low level networking. I need to intercepts all TCP/UDP packets and potentially filter or substitute them with new ones.

What would be the best way to intercept these packets and inject new one? I'm only targeting Windows platforms.

Lotfi
  • 1,205
  • 8
  • 18

4 Answers4

2

You want WinPcap if you're on Windows. What you're going to need to do is intercept (and filter) packets with WinPcap and then write a program that does packet creation when/if you want it.

Sam DeFabbia-Kane
  • 2,599
  • 17
  • 11
1

Write a program that uses libpcap at TCPDump contains tons of API for messing with low-level networking

Aiden Bell
  • 28,212
  • 4
  • 75
  • 119
1

I want to develop a program, not just use a tool

This page has some references to other pages which introduce the network device driver architectures: NDIS Intermediate driver interface.

Community
  • 1
  • 1
ChrisW
  • 54,973
  • 13
  • 116
  • 224
0

You can use tools like wireshark to intercept traffic.

If you planning to write a program which will do all this stuff , then you may need to go to driver level to intercept all traffic.

wireshark uses libpcap . I am not sure but that may help

anand
  • 11,071
  • 28
  • 101
  • 159