Skip to content
/ wfp_decoder Public

Decode Microsoft Windows Filtering Platform (WFP) rules

License

MIT license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

ColorTokens-Labs/wfp_decoder

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
django-wfpdump
django-wfpdump
 
 
.gitignore
.gitignore
 
 
Dockerfile
Dockerfile
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
requirements.txt
requirements.txt
 
 

Repository files navigation

wfp_decoder

Decode Microsoft Windows Filtering Platform (WFP) rules.

This web-based tool decodes the wfpstate.xml produced by the command netsh wfp show state and provides a tabular view of all the providers, layers and rules.

To deploy WFP Decoder:

Install the python dependencies specified in requirements.txt. You can use a virtual environment (venv). Build the docker image:

docker build -t wfpdump .

Run it as follows:

docker run -p 8000:8000 wfpdump

Point your browser to http://localhost:8000/wfpdump

If you are running this on a remote system, add the ALLOWED_HOSTS argument specifying the external IP address of the remote system.

docker run -p 8000:8000 -e ALLOWED_HOSTS="host_ip" wfpdump

About

Decode Microsoft Windows Filtering Platform (WFP) rules

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages