Winpkfilter < No Login >

Understanding Windows Packet Filter (WinpkFilter) is a high-performance network packet interception and injection framework developed by NT Kernel Resources . It allows developers to capture, inspect, modify, and inject raw Ethernet frames at the Network Driver Interface Specification (NDIS) layer of the Windows operating system network stack.

// Set the filter function WinPKFilter_SetFilter(hFilterInstance, FilterPacket); winpkfilter

return FILTER_PACKET_PASS;

Why it's cool: Most firewalls work at the application layer or TDI. WinPkFilter does it at the NDIS level – even ICMP or malformed packets can be blocked. you'll need to:

To use WinPKFilter, you'll need to: