C#实现netstat的功能

最新推荐文章于 2024-01-12 11:02:19 发布

原创

最新推荐文章于 2024-01-12 11:02:19 发布 · 3.5k 阅读

8 ·

CC 4.0 BY-SA版权

文章标签：

#C# #netstat #TCP #connection #pid

核心思想是调用 WinAPI 中的

GetExtendedTcpTable 方法来获取所有活动的 TCP 连接的信息，包括进程ID等等，主要实现如下：

TcpConnectionTableHelper.cs：

using System;
using System.Collections.Generic;
using System.Linq;
using System.Runtime.InteropServices;
using System.Text;
using System.Threading.Tasks;

namespace TcpConnectionMonitor
{
    public class TcpConnectionTableHelper
    {
        [DllImport("Ws2_32.dll")]
        static extern ushort ntohs(ushort netshort);

        [DllImport("iphlpapi.dll", SetLastError = true)]
        static extern uint GetExtendedTcpTable(IntPtr pTcpTable, ref int dwOutBufLen, bool sort, int ipVersion, TCP_TABLE_TYPE tblClass, int reserved);

        [StructLayout(LayoutKind.Sequential)]
        public struct MIB_TCPROW_OWNER_PID
        {
            public uint state;
            public uint localAddr;
            public byte localPort1;
            public byte localPort2;
            public byte localPort3;
            public byte localPort4;
            public uint remoteAddr;
            public byte remotePort1;
            public byte remotePort2;
            public byte remotePort3;
            public byte remotePort4;
            public int owningPid;

            public ushort LocalPort
            {
                get
                {
                    return BitConverter.ToUInt16(new byte[2] { localPort2, localPort1 }, 0);
                }
            }

            public ushort RemotePort
            {
                get
                {
                    return BitCo