Get remote host name on a network shared file access in mini-filter driver

  • Thread starter Thread starter jay96
  • Start date Start date
J

jay96

Guest
I am writing a mini-filter driver to allow or block Network shared file access for specific hosts in a network. I have detected for Any network access with the SourceName field using SeQueryInformationToken().

If the SourceName field is NtLmSsp the request is from the network.

Till now I can Only detect the network file access But somehow I am not able to find out the HostName/IP for the remote machine.

How can I identify the remote IP/host Name in network shared file access?

Any hints/ideas will be much appreciated.

Thanks.

Platform: Windows, Language: c

Continue reading...
 
You must log in or register to reply here.

Similar threads

L
Cannot connect to a shared network drive even that I am on the same Network and all the other users can connect
Replies
0
Views
13
Learn Teach
L
W
can not access share folder on local area network
Replies
0
Views
8
wadeharrouff
W
W
can not access share folder on local area network
Replies
0
Views
5
wadeharrouff
W
J
Cannot access shared Windows 7 files from Windows 10 PC (The network path was not found 0x80070035)
Replies
0
Views
22
JABui
J
J
Cannot access shared Windows 7 files from Windows 10 PC (The network path was not found 0x80070035)
Replies
0
Views
22
JABui
J
Back
Top