Home › Forums › Discussions › Support › How to know the captured package belong to which process? › Re: Re: How to know the captured package belong to which process?
February 17, 2009 at 7:34 am
#6771
You can use IP helper API to query current active connections table and match your packet against this table using IP address and port information you have. Since Windows XP connections table contains process ID. Another way is using LSP or TDI filter driver.