Research and Implementation of the Covert Communication based on the NIDS Middle Layer Driver

Traditional computer convert communication mostly uses the HOOK technique,but this method couldn't fundamentally solve the problem of communication packets discarded by firewall intercept.NDIS technology is commonly used in firewall and capture software.By analyzing the NDIS principle,this paper suggests a new convert communication method that can pass through the windows firewall,and shows the design and implementation.In the end,a test is done on computer with the usual windows firewalls installed.The result shows that the method can pass though most of the firewalls.