iphlpapi.dll RPC target

#29084 by Vrtule
Mon Aug 22, 2016 2:04 pm

Hello,

recently, I looked into iphlpapi.dll a little bit and I found out (not surprisingly) that it uses RPC quite a lot. Does anybody know the other end of the RPC calls? I am especially interestend in the ICMP stuff.

Thanks in advance

Username

Vrtule

Posts

468

Joined

Sat Mar 13, 2010 9:14 pm

Location

Czech Republic

Contact

Re: iphlpapi.dll RPC target

#29127 by myid
Sun Aug 28, 2016 4:48 pm

Maybe you can find the source code on REACTOS? :)

Username

myid

Posts

157

Joined

Sat Jun 09, 2012 2:54 am

Re: iphlpapi.dll RPC target

#29129 by EP_X0FF
Sun Aug 28, 2016 5:54 pm

http://www.rpcview.org/ ?

Ring0 - the source of inspiration

Username

EP_X0FF

Rank

Global Moderator

Posts

4947

Joined

Sun Mar 07, 2010 5:35 am

Location

Russian Federation

Contact

Re: iphlpapi.dll RPC target

#29130 by Vrtule
Sun Aug 28, 2016 6:20 pm

Thanks for the suggestions, especially for RPCView. It actually turned out that there is no RPC on the ICMP path, at least not in iphlpapi.dll. IcmpXSendEcho leads to an IOCTL targetted at \Device\nsiProxy. So, my bad.

Username

Vrtule

Posts

468

Joined

Sat Mar 13, 2010 9:14 pm

Location

Czech Republic

Contact

Page 1 of 1
4 posts

Return to “Kernel-Mode Development”

Display:

Sort by:

Jump to: