Security Software Based on Windows NDIS Filter Drivers

@article{Chen2013SecuritySB,
  title={Security Software Based on Windows NDIS Filter Drivers},
  author={Shin-Shung Chen and Tzong-Yih Kuo and Yu-Wen Chen},
  journal={2013 IEEE 37th Annual Computer Software and Applications Conference Workshops},
  year={2013},
  pages={260-264}
}
We present a new security software based on the NDIS filter drivers at Windows desktop computer, which focuses on filtering and dropping packets according to the snort rules released by security communities (such as Snort or Emerging Threats). TWIDS is an application designed based on the middleware of the Windows® OS, it can identify the application process that transfer packets. TWIDS can process a large number of malicious IP address in the database that it can check and drop packets… CONTINUE READING