目录
- dllSupport debug in vs2019 directly and with debug mode11个月前
- docwindivert.html: fix 6.11 title: format not parse4年前
- examplesSupport debug in vs2019 directly and with debug mode11个月前
- includeBundle driver file into resource11个月前
- infMigrate toolchains to adapt vs201912个月前
- scriptsSupport debug in vs2019 directly and with debug mode11个月前
- sysSupport debug in vs2019 directly and with debug mode11个月前
- testSupport debug in vs2019 directly and with debug mode11个月前
- .env.sampleMigrate toolchains to adapt vs201912个月前
- .gitignoreSupport debug in vs2019 directly and with debug mode11个月前
- CHANGELOGLog a system event on driver (un)load.6年前
- CONTRIBUTING.mdMigrate toolchains to adapt vs201912个月前
- LICENSEVersion tweaks.7年前
- READMECoalesce filter interpreter implementations.6年前
- VERSIONImplement new packet parser(s) for WinDivert.6年前
- dirsRetire MSVC-2012 and (non-driver) WDDK builds.7年前
- mingw-build.shLog a system event on driver (un)load.6年前
- msvc-build.batAdd a Visual Studio build system (fix #118).7年前
- release-build.shFix #1757年前
- wddk-build.batUpdate copyright year.7年前
- windivert.unofficial.propsSupport debug in vs2019 directly and with debug mode11个月前
- windivert.unofficial.slnSupport debug in vs2019 directly and with debug mode11个月前
邀请码
版权所有:中国计算机学会技术支持:开源发展技术委员会
京ICP备13000930号-9
京公网安备 11010802032778号
WinDivert 2.2: Windows Packet Divert
Windows Packet Divert (WinDivert) is a user-mode packet interception library for Windows 7, Windows 8 and Windows 10.
WinDivert enables user-mode capturing/modifying/dropping of network packets sent to/from the Windows network stack. In summary, WinDivert can: - capture network packets - filter/drop network packets - sniff network packets - (re)inject network packets - modify network packets WinDivert can be used to implement user-mode packet filters, sniffers, firewalls, NATs, VPNs, IDSs, tunneling applications, etc..
WinDivert supports the following features: - packet interception, sniffing, or dropping modes - support for loopback (localhost) traffic - full IPv6 support - network layer - simple yet powerful API - high-level filtering language - filter priorities - freely available under the terms of the GNU Lesser General Public License (LGPLv3)
For more information see doc/windivert.html
The basic architecture of WinDivert is as follows:
[user mode] | | ………………..|……………………………..|………………. [kernel mode] | | | | | | +—————+ +—————–> (1) packet | | (2b) non-matching packet ————>| WinDivert.sys |——————————————–> | | +—————+
The WinDivert.sys driver is installed below the Windows network stack. The following actions occur:
(1) A new packet enters the network stack and is intercepted by WinDivert.sys (2a) If the packet matches the PROGRAM-defined filter, it is diverted. The PROGRAM can then read the packet using a call to WinDivertRecv(). (2b) If the packet does not match the filter, the packet continues as normal. (3) PROGRAM either drops, modifies, or re-injects the packet. PROGRAM can re-inject the (modified) using a call to WinDivertSend().
WinDivert is dual-licensed under your choice of the GNU Lesser General Public License (LGPL) Version 3 or the GNU General Public License (GPL) Version 2. See the LICENSE file for more information.
WinDivert was written by basil.
For further information, or bug reports, please contact:
The homepage for WinDivert is:
The source code for WinDivert is hosted by GitHub at: