Divert I don't know how to identify icmp packets and associated process id , is there any reference for it ?

I don't know how to identify icmp packets and associated process id , is there any reference for it ?

Open iouvxz opened this issue 1 year ago • 1 comments

Dec 04 '23 09:12 iouvxz

https://github.com/basil00/Divert/blob/134dd37bd0a87d3d236214e42edc1867b8911c6f/doc/windivert.html

See section filter language: filter for icmp or icmpv6

Dec 12 '23 21:12 majibow

To get icmp packets, you use the NETWORK layer. To get the process ID, you need to use the SOCKET or FLOW layers. Then you need to write some code to associate the two layers. It is complex but possible. Tallow does something like this, but for non-icmp traffic.

Apr 02 '24 00:04 basil00

Divert Divert copied to clipboard

I don't know how to identify icmp packets and associated process id , is there any reference for it ?

Divert
Divert copied to clipboard