Vista default LSPs are different from Windows XP default LSPs and Windows 7 default LSPs:
- Vista has new IP6 base provider.
- Unlike Windows7 the name providers don’t change across versions.
Barak
Vista default LSPs
Leave a reply
Category Archives: Winsock LSP
Windows seven hook Winsock
Windows seven hook Winsock can be performed in number of ways:
- Using Komodia’s Code Hook.
- Using Winsock LSP
Barak
Winsock hooking
Winsock hooking, is a method which can be used to replace Winsock LSP, NDIS, WFP, TDI. It has advantages and disadvantages. The advantage is that it doesn’t require any kind of installation, the disadvantage is that you need to have a hooking/detouring package which cost money.
Barak
WSPSelect
How to intercept HTTP traffic
How to intercept HTTP traffic can be done using a number of technologies, I always recommend going for stream based technologies which are: Winsock LSP, TDI or WFP. Each has advantages and disadvantages like everything in life.
Barak
How to intercept data on Internet
How to intercept data on Internet? This can be done using number of technologies:
- Winsock LSP – Is good when you want to operate at user level and inspect streams and not packets.
- TDI – Soon to be phased out, it’s a driver like technology that can be used either in packet or stream level.
- NDIS – Kernel driver that inspects packets and has total control over the network.
- WFP – Microsoft new filterting platform, but until Windows XP is phased out, I forsee it will not gain momentum.
Barak
Network traffic monitor Windows
Network traffic monitor Windows can be done with various methods and technologies like: Winsock LSP, NDIS Passthru or NDIS IM, TDI Filter or TDI Driver, WFP and more.
Barak
Layered Service Provider
Layered Service Provider or its more known form is Winsock LSP is used to perform various packet interception/manipulation tasks. The main advantage of Winsock LSP is that it works on stream level and it’s implemented in user level.
Barak
What is LSP
What is LSP? LSP stand for Layered Service Provider and in a nutshell it’s a component that intercepts all Winsock API calls and allows the programmer to inspect the data and even modify it.
You can read about more LSP resources on Komodia’s web site.
Barak
TDI Driver
TDI Driver is mostly used today for personal AV products. I know there are number of parental control, spam filters products that use it as well.
I’m not a fan of TDI, although it has its place in doing networking filtering, it’s time is up and in one and a half year it will be phased out, so I don’t see any reason to start a project using TDI.
You can read this nice article about the difference between LSP and TDI.
Barak