{"id":2013,"date":"2019-01-27T00:23:38","date_gmt":"2019-01-26T23:23:38","guid":{"rendered":"http:\/\/labalec.fr\/erwan\/?p=2013"},"modified":"2019-02-03T14:45:46","modified_gmt":"2019-02-03T13:45:46","slug":"windivert","status":"publish","type":"post","link":"https:\/\/labalec.fr\/erwan\/?p=2013","title":{"rendered":"Windivert : a user-mode packet capture-and-divert package for Windows"},"content":{"rendered":"

Quoting the original web site (here<\/a>) : <\/p>\n

\nWindows Packet Divert (WinDivert) is a user-mode packet capture-and-divert package for Windows 2008, Windows 7, Windows 8, Windows 10 and Windows 2016.<\/p>\n

WinDivert allows user-mode applications to capture\/modify\/drop network packets sent to\/from the Windows network stack. In summary, WinDivert can:<\/p>\n

capture network packets
\nfilter\/drop network packets
\nsniff network packets
\n(re)inject network packets
\nmodify network packets
\nWinDivert can be used to implement user-mode packet filters, packet sniffers, firewalls, NAT, VPNs, tunneling applications, etc.<\/p>\n

The main features of WinDivert include:<\/p>\n

packet interception, sniffing, or dropping modes
\nsupports loopback (localhost) traffic
\nfull IPv6 support
\nnetwork layer
\nsimple yet powerful API
\nhigh-level filtering language
\nfilter priorities
\nsilent installation
\nfreely available under the terms of the GNU Lesser General Public License (LGPL)<\/em>\n<\/p>\n

Similar to the raw socket sniffer (here<\/a>), i have shared a demo (in freepascal) here<\/a>.<\/p>\n

Because windivert is a kernel driver, issues inherent to the windows raw sockets will not apply here.<\/p>\n","protected":false},"excerpt":{"rendered":"

Quoting the original web site (here) : Windows Packet Divert (WinDivert) is a user-mode packet capture-and-divert package for Windows 2008, Windows 7, Windows 8, Windows 10 and Windows 2016. WinDivert allows user-mode applications to capture\/modify\/drop network packets sent to\/from the Windows network stack. In summary, WinDivert can: capture network packets filter\/drop network packets sniff network […]<\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[5],"tags":[104,105],"class_list":["post-2013","post","type-post","status-publish","format-standard","hentry","category-network","tag-sniffer","tag-windivert","category-5-id","post-seq-1","post-parity-odd","meta-position-corners","fix"],"_links":{"self":[{"href":"https:\/\/labalec.fr\/erwan\/index.php?rest_route=\/wp\/v2\/posts\/2013","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/labalec.fr\/erwan\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/labalec.fr\/erwan\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/labalec.fr\/erwan\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/labalec.fr\/erwan\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=2013"}],"version-history":[{"count":5,"href":"https:\/\/labalec.fr\/erwan\/index.php?rest_route=\/wp\/v2\/posts\/2013\/revisions"}],"predecessor-version":[{"id":2018,"href":"https:\/\/labalec.fr\/erwan\/index.php?rest_route=\/wp\/v2\/posts\/2013\/revisions\/2018"}],"wp:attachment":[{"href":"https:\/\/labalec.fr\/erwan\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=2013"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/labalec.fr\/erwan\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=2013"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/labalec.fr\/erwan\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=2013"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}