Hello to everybody! 8)
I have some questions, which I suppose can be answered just by
the proficient people (it means I can't)
1) How to obtain a list of all opened sockets (UDP/TCP) on a
local machine? I tried some function form iphlpapi.dll but
it posesses just TCP ports.
2) How to trace the socket usage by other progs? I tried some technique
of substituting the winsock.dll with my own, but it can be easily
overcome by the debugger.
3) How to obtain the IP's and DNS names of users, connected to the machine?
(like NBTSTAT -A does)
4) How to get a descriptor of already opened socket (not by my program)?
Sorry for *SUCH* list of questions...
Best regards,
MAESTRO
I don't know if this will help you or not.
TCPView v1.0
See all open TCP and UDP endpoints. Full source to the command-line version of this tool, netstatp, is included.
http://www.sysinternals.com/ntw2k/source.shtml