Re: Re: How to know the captured package belong to which process?

Home Forums Discussions Support Portal How to know the captured package belong to which process? Re: Re: How to know the captured package belong to which process?

#6771

Vadim Smirnov
Moderator

You can use IP helper API to query current active connections table and match your packet against this table using IP address and port information you have. Since Windows XP connections table contains process ID. Another way is using LSP or TDI filter driver.