Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Unofficial WinPcap Installer Issue

From: jah <jah () zadkiel plus com>
Date: Mon, 19 May 2008 20:46:15 +0100
Hi,

This might help a bit.
I've had a look at the CACE installer for winpcap (using 7zip) and it
includes WinPcapInstall.dll  which exports a public method(?) called
manage_npf_driver(char *,char)
It seems that this function calls OpenSCManagerA and CreateServiceA to
create a service using the Service Control Manager.
Running sc query npf gives:

SERVICE_NAME: npf
        TYPE               : 1  KERNEL_DRIVER
        STATE              : 4  RUNNING
                                (STOPPABLE,NOT_PAUSABLE,IGNORES_SHUTDOWN)
        WIN32_EXIT_CODE    : 0  (0x0)
        SERVICE_EXIT_CODE  : 0  (0x0)
        CHECKPOINT         : 0x0
        WAIT_HINT          : 0x0
        PID                : 0
        FLAGS              :

So it looks like nmap's winpcap installer will have to do something like

sc create npf binpath= %windir%\system32\drivers\npf.sys type= kernel

start= may also be required, I'm not sure what the value would need to be.

then sc start npf should start the service.

Could be a step in the right direction.

Regards,

jah

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org
Previous By Date Next
Previous By Thread Next

Current thread: