Description: Firewall filter driver, 1) a device driver to create the entrance, create a symbolic link for the communication and processing of IRPs (distribution, loading, unloading, create ...) standard routines. 2) in the standard routines in the management IRPs. In our code, we achieved four IOCTL code: START_IP_HOOK (up filter function), STOP_IP_HOOK (cancellation filter function), ADD_FILTER (installation of new filter rules), CLEAR_FILTER (clear all the rules). 3) for our drivers, we used to filter multiple functions.
To Search:
- [ressdt2] - SSDT restore source, if your SSDT table
- [DLL] - Driven programming, hook writeprocememor
- [explorer] - Monitor driver file, which contains a va
- [PSC] - Monitoring process was initiated and dri
File list (Check if you may need any files):
DrvFltIp\buildchk_wxp_x86.log
........\dbghelp.h
........\ddkbuild.bat
........\DrvFltIp.c
........\DrvFltIp.dsp
........\DrvFltIp.dsw
........\DrvFltIp.h
........\DrvFltIp.ncb
........\DrvFltIp.opt
........\DrvFltIp.plg
........\makefile
........\readme.txt
........\sources
DrvFltIp
Download