How i block some known packet?

Question

0.00/5 (No votes)

See more:

Win2008-R2

, +

Hello,

First off all i'm searching a basic application that sniff and filter network packets and also it should be block some known packets...

I have a server and some specific exe's are running on it...

Some lamers/hackers send a known packet and they can close spesific exes... In practically that is not good for me...

They are sending this packet (It can be modified by them, i know because i also capture some different packets which they also close exes);

00000000  25 00 00 50 00 00 0E 41  41 75 26 98 AE 82 E8 BB   %..P...A Au&˜®‚è» 
00000010  00 00 00 19 00 00 00 99  25 03 DD BA 18 E0 1A C3   .......™ %.İº.à.Ã 
00000020  D9 F4 5D 1B B4 69 6A AB  48 1C 21 09 00 00 50 00   Ùô].´ij« H.!...P. 
00000030  00 10 47 48 EC 19 A3 DA  2F E9 0E 00 01 20 00 00   ..GHì.£Ú /é... .. 
00000040  0B 00 41 67 65 6E 74 53  65 72 76 65 72 00 05 00   ..AgentS erver... 
00000050  0D 60 00 00 01 01 00 05  20 0B 00 0D 60 00 00 00   .`......  ...`... 
00000060  01 00 01 C3 02 05 00 00  00 02 05 00 0D 60 00 00   ...Ã.... .....`.. 
00000070  01 01 00 05 60 06 00 0D  60 00 00 00 03 00 02 00   ....`... `....... 
00000080  02                                                 .

How can i filter this known packet, i dont want this packet to reach exes...
Is there any packet filter/blocker?

Posted 26-Jun-13 4:10am

Member 10127692

Add a Solution

1 solution

Add a Solution

Add your solution here

Treat my content as plain text, not as HTML

Preview 0

…

Existing Members

Sign in to your account

...or Join us

Download, Vote, Comment, Publish.

Your Email
Password
Forgot your password?

Your Email
This email is in use. Do you need your password?
Optional Password

I have read and agree to the Terms of Service and Privacy Policy
Please subscribe me to the CodeProject newsletters

When answering a question please:

Read the question carefully.
Understand that English isn't everyone's first language so be lenient of bad spelling and grammar.
If a question is poorly phrased then either ask for clarification, ignore it, or edit the question and fix the problem. Insults are not welcome.
Don't tell someone to read the manual. Chances are they have and don't get it. Provide an answer or move on to the next question.

Let's work to help developers, not make them feel stupid.

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

CdnSecurityEngineer · Answer 1 · 2013-07-24T04:59:00

Your question is kind of confusing. The reason being is because you mention that you want to block a specific packet. However you also mention that it can be changed. Therefore if you set out to blcck at the Packet level on a packet by packet. You're going to pull your hair out. I would recommend looking at SharpPcap. It's a .NET port of the WinPCap. Using this library in your .NET code you can, examine the packets, and attempt to find something that you can filter on. MAC, IP, Structure. Within the .NET application itself.

Sharp Pcap can be found Here