Extracting / Analysing Data portion of packets RRS feed

  • Question

  • Hi 

      I am looking at the following example code https://github.com/Microsoft/Windows-driver-samples/tree/master/network/trans/inspect and wonder how I can easily access the data portion of the packets (as a start for TCP, UDP, ICMP ). I assume it is all  in the NET_BUFFER structure, but I am not sure which calls will extract it.  Are there any examples ?

    Thank you



    • Edited by Huaraz Friday, December 28, 2018 7:48 PM
    Friday, December 28, 2018 7:47 PM