Posts Tagged ‘NDIS’

NDIS Hooking Source Code

Wednesday, June 9th, 2010

Code hooking is a very good tool for the programmer – specifically when chasing down bugs.  When building your NDIS hooking source code, be sure to visit Komodia’s free NDIS guide and resource page.  There is a lot of free – yet extremely valuable – information about all things NDIS.  This includes, but is not limited to, NDIS passthru information, intermediate drivers, and protocol drivers.


NDIS 64 bit passthru

Thursday, June 3rd, 2010

NDIS 64 bit Passthru is a service that allows you to intercept all information packets that sent to, sent from, or received by a network interface.  If that wasn’t cool enough, you can also read, block, and/or modify any and all of these information packets.  Passthru NDIS modify is a relatively simple procedure once you have it all down.  Here is the best part, Komodia has a free NDIS guide!


http Redirect src NDIS

Tuesday, June 1st, 2010

Komodia’s free NDIS guide can handle all over your NDIS problems, questions, and concerns.  NDIS redirection can be tricky – which is, I imagine, why you are here.  For all questions like http redirect src NDIS to NDIS redirect all http connections to NDIS redirection in general, Komodia is here with a free resource to help.


NDIS Hooking Source Code

Thursday, May 27th, 2010

NDIS (Network Driver Interface Specification) makes it possible for varying transport protocols to communicate with the network adapters (and any other hardware device).  When you are looking for NDIS specific information (like a NDIS hooking source code), the best place to find everything you may need is Komodia’s free NDIS guide.

Komodia’s NDIS free guide answers questions and provides information for all things network driver interface related.  From the NDIS hooking source code to the NDIS passthru and more.


Three new sites

Tuesday, May 25th, 2010

Three new sites we are going to promote:


Packet Redirection NDIS Questions

Monday, May 24th, 2010

NDIS (Network Driver Interface Specification) allows differing transport protocols to communicate with the network adapters (and/or other hardware devices). NDIS accomplishes this by giving a specification to the Network Driver Architecture. As soon as the transport protocol communicates to the network adapter using these NDIS specifications, then the network adapter will be able to send/receive packets and other data over this network.  For all questions related to packet redirection NDIS or passthru NDIS modify concerns, please view Komdia’s free NDIS Guide.


Hook Winsock API

Sunday, May 2nd, 2010

Hook Winsock API, can be done in various ways including: Winsock LSP, TDI, NDIS, Hooks, WFP. Which one is correct for you? it depends on what you plan to do, so it’s recommended you read about the technologies.


How to intercept data on Internet

Friday, April 9th, 2010

How to intercept data on Internet? This can be done using number of technologies:

  • Winsock LSP – Is good when you want to operate at user level and inspect streams and not packets.
  • TDI – Soon to be phased out, it’s a driver like technology that can be used either in packet or stream level.
  • NDIS – Kernel driver that inspects packets and has total control over the network.
  • WFP – Microsoft new filterting platform, but until Windows XP is phased out, I forsee it will not gain momentum.


NDIS filter development

Thursday, March 25th, 2010

NDIS filter development is a tedious and hard process, there are packages on the Internet that offer an easier development, but the real question should be – DO YOU NEED NDIS FILTER? you see, some implementations can only be done with NDIS filter, BUT there are scenarios which can be solved with NDIS or other network interception technologies. If this is the case it’s imperative you know FOR SURE, that NDIS was indeed the correct technology for that solution.


Firewall application layer Winsock2

Sunday, March 14th, 2010

There are several ways to implement a firewall:

  • Winsock LSP – Can be used for an application layer firewall, but it’s mostly not used for various reasons.
  • TDI Driver – Mostly used for personal firewalls, according to Microsoft it will be phased out in the next OS.
  • Ndis IM – Mostly used for gateway firewalls.
  • WFP – The new plaform Microsoft is promoting, in my opinion that until XP is retired this will not gain momentum.