Skip to content
/ HashFilter Public
forked from killbug2004/HashFilter

block network access based on process file hash in WFP

0 stars 9 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

EngEhabFahmi/HashFilter

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
exe
exe
 
 
sys
sys
 
 
README.md
README.md
 
 

Repository files navigation

HashFilter

credit to https://twitter.com/R00tkitSMM ([email protected]) telegram username : https://telegram.me/firozi

need block process with its file's hash ? you can use this WFP library , to do it just call User-Mode C++ functions it will do it in Kernel-Mode

  1. block TCP/UDP/ICMP based on process file hash
  2. use SHA1 for hashing
  3. Log process Network Activity ( process hash , network info : remote and local port-ip address )
  4. real time rule setting
  5. rule can act as white or black list

About

block network access based on process file hash in WFP

Resources

Readme
Activity

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • C 78.2%
  • C++ 19.5%
  • Makefile 2.3%