WFP - can a callout driver catch and inject packets at layer above TCP

Sagi Zar 6 Reputation points
2021-02-10T06:43:40.83+00:00

Hi,
I'm trying to understand if I can implement a WFP callout driver that will intercept connection establishment and terminate with success before it ever gets to the TCP layer.
and if it can, can it than intercept the traffic of the payload that the application sends and inject incoming traffic to the application in return.
it means that the session from application point of view is established and it can send an recv data, but there was never a 4 ways handshake of SYN and SYN+ACK.
Regards,
Sagi

Windows Network
Windows Network
Windows: A family of Microsoft operating systems that run across personal computers, tablets, laptops, phones, internet of things devices, self-contained mixed reality headsets, large collaboration screens, and other devices.Network: A group of devices that communicate either wirelessly or via a physical connection.
697 questions
0 comments