Solved

Meaning of hex data from packet sniffer

Posted on 2004-10-15
5
742 Views
Last Modified: 2012-05-05
Hello all. I wrote a data sniffer in winpcap that gets all the data. now i have all the data and header information. i am able to "decode" the header information into TCP, UDP etc etc. I parsed the information, so now I have ONLY the data part of the whole packet. And the data part is in bits (eg. 1101001110). How can I decipher what the data is?? Is it possible?

PS: The new format of E-E is really confusing with words and ads all over the place. Is this how it's gonna be in the near future as well?
0
Comment
Question by:punk5ta
5 Comments
 
LVL 48

Expert Comment

by:Mikal613
ID: 12321592
0
 

Author Comment

by:punk5ta
ID: 12326047
I know about hex / oct / binary data. That was not what I was asking for. I was wondering how to INTERPRET the data that I have which is in binary format. What I want to know is "what does the data in Packet A mean?" for instance.
0
 
LVL 3

Accepted Solution

by:
jenmir earned 100 total points
ID: 12404546
The answer is that there is no answer. The data could be anything. By definition, data can be anything. It could be following a format, a predetermined protocol, or it could be random information collected from an oil well pumping somewhere in a far off kingdom. Who knows?

People who sniff packets usually have a good idea what is going on while they're doing the sniffing. Think of it like this: You hear two people talking in a foreign language, which you don't understand. Later you hear them talking in the same apparent language, but here and there you hear an English word or phrase come up. If there is enough English, you may be able to figure out what is being discussed from the English and the context of the situation. If there isn't really much English and you don't know the context of the conversation, you'll likely to be guessing at the meaning or even misterpreting it entirely.

Run the data through an hex to ascii converter, such as the one found below:

http://www.packetshack.org/Projects/hex2ascii.php

or search on "hex2ascii" and maybe you'll turn up something interesting. Or maybe not.

j.m.
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

MAC Filtering: MAC filtering is like handing a list of names to a doorman. If someone comes to the door and mentions a name, this name is checked by the doorman on his list and granted or denied access by this. This means that if someone menti…
In this article we have discussed about the OS X EI Capitan and how to fix Wi-Fi issue in OS X El Capitan. We have explained how to delete system level preferences and create a new Wi-Fi location to resolve Wi-Fi issue.
This Micro Tutorial will show you how to maximize your wireless card to its maximum capability. This will be demonstrated using Intel(R) Centrino(R) Wireless-N 2230 wireless card on Windows 8 operating system.
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…

839 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question