how to decode the captured packets how to view the original message or picture some thing like that asked 26 Apr '12, 11:52  arasu edited 26 Apr '12, 13:39  Jim Aragon |
One Answer:
"How to decode the captured packets" is a very general question; one simple answer is to use a packet analyzer application. One nice free packet analyzer is called "Wireshark". :-) "How to view the original message or picture" is a bit less general question. For some protocols and image formats, Wireshark might support saving images in, for example, mail messages or Web pages. There's no guarantee that it will support it in all protocols (SMTP, POP, IMAP, various Microsoft protocols, etc.) or that it will support it for all image types. And if the traffic is running over SSL/TLS (which would be the case for HTTP traffic to an https: URL, and could also be the case for SMTP and POP and probably IMAP), you would need to supply enough information to allow Wireshark to decrypt the encrypted SSL traffic, as discussed in the SSL page on the Wireshark Wiki. answered 30 Apr '12, 16:41  Guy Harris ♦♦ edited 30 Apr '12, 16:43 |
Ok... what exactly is your problem?!
if it's a "text based" protcol, use: Analyze -> Follow TCP/UDP Stream. You will see the transmitted data in text form. If that's not what you need, please add more details to your question.
Regards Kurt