Re: Re: How to know the captured package belong to which process?

Home Forums Discussions Support How to know the captured package belong to which process? Re: Re: How to know the captured package belong to which process?

#6771
Vadim Smirnov
Keymaster

    You can use IP helper API to query current active connections table and match your packet against this table using IP address and port information you have. Since Windows XP connections table contains process ID. Another way is using LSP or TDI filter driver.