This is our old Q&A Site. Please post any new questions and answers at

Ok so I captured a login session but I can't see anything in wireshark, when I click 'follow tcp streams' I only see "random" strings, but no readable content. Could someone help me out? The link is here:

This question is marked "community wiki".

asked 01 Oct '15, 12:44

shad0w125's gravatar image

accept rate: 0%

edited 02 Oct '15, 15:49

Which stream ID do you mean?

(01 Oct '15, 12:56) Christian_R

I mean almost all of them,I've captured a login session but the only thing I could find so far was data about the web browser in use.

(01 Oct '15, 13:03) shad0w125

What do you expect to see? Network data is not always transmitted in a human readable format.

(01 Oct '15, 13:06) Jim Aragon

Well I've captured a login session with an email and password, the pcap file was encrypted with the old WEP standard, I then decrypted but now I can't find the login session. What I find weird is that the other pcap files were fully readable, how could I decypher these packets?

(01 Oct '15, 13:09) shad0w125

Layered security. WEP just handles the lowest (datalink) layer, while SSL rides on the transport layer. You talk about 'other pcap files' which we can't see?

(02 Oct '15, 08:41) Jaap ♦

So the traffic is still encrypted with SSL after decrypting WEP? Nevermind the other pcap files I mentioned, they were captured from another network, I don't even know why I mentioned it

(02 Oct '15, 15:47) shad0w125
showing 5 of 6 show 1 more comments
Be the first one to answer this question!
toggle preview

Follow this question

By Email:

Once you sign in you will be able to subscribe for any updates here



Answers and Comments

Markdown Basics

  • *italic* or _italic_
  • **bold** or __bold__
  • link:[text]( "title")
  • image?![alt text](/path/img.jpg "title")
  • numbered list: 1. Foo 2. Bar
  • to add a line break simply add two spaces to where you would like the new line to be.
  • basic HTML tags are also supported

Question tags:


question asked: 01 Oct '15, 12:44

question was seen: 2,123 times

last updated: 02 Oct '15, 15:49

p​o​w​e​r​e​d by O​S​Q​A