StackOverflow2013

Note that there are some explanatory texts on larger screens.

plurals

POHow can I extract plain text from a packet Hex dump?
primarykey
Id
17599135
data
AcceptedAnswerId
0
AnswerCount
1
ClosedDate
CommentCount
3
CommunityOwnedDate
CreationDate
2013-07-11T16:51:13.403
FavoriteCount
1
LastActivityDate
2013-07-11T18:14:36.660
LastEditDate
LastEditorUserId
0
OwnerUserId
760135
ParentId
0
PostTypeId
1
Score
1
ViewCount
819
LastEditorDisplayName
text
Body
<p>I'm using pycapy and Impacket to write a script that records and analyzes network traffic. The output looks like this:</p> <pre><code>Ether: 00:1b:21:50:aa:b2 -> 00:25:11:2c:12:56 IP DF xxx.xxx.xxx.xx1 -> xxx.xxx.xxx.xx1 TCP ack push 17500 -> 49669 1703 0100 207e 7f37 25c0 59c2 b263 2071 .... ~.7%.Y..c q 16be 9382 18b2 b1c5 dedc 6c1b 2b21 fbc1 ..........l.+!.. 4ae1 4c20 d117 0301 0020 a223 76b9 1ec3 J.L ..... .#v... e8b6 c229 cf65 85ed c9e4 0e3f 337f d1ae ...).e.....?3... 7ca8 5a5f 0627 dcc4 9d71 |.Z_.'...q Ether: 00:1b:21:50:aa:b2 -> 00:25:11:2c:12:56 IP DF xxx.xxx.xxx.xx1 -> xxx.xxx.xxx.xx1 TCP ack push 17500 -> 49669 1703 0100 2096 698d db90 b9ae 9fc2 bfb3 .... .i......... 8cfd dedb 6105 0ada 5e7a b160 ee63 500f ....a...^z.`.cP. a373 51cc 0917 0301 0020 d745 e4f4 6b5f .sQ...... .E..k_ 66b9 945d 8456 63fe 87ed 2584 ead2 1e98 f..].Vc...%..... c3de 0003 2405 52fc dd06 ....$.R... Ether: 00:25:11:2c:12:56 -> 00:1b:21:50:aa:b2 IP DF xxx.xxx.xxx.xx1 -> xxx.xxx.xxx.xx1 TCP ack 49669 -> 17500 Ether: 00:25:11:2c:12:56 -> 00:1b:21:50:a3:13 IP DF xxx.xxx.xxx.xx1 -> xxx.xxx.xxx.xx1 TCP ack push 49670 -> 17500 1703 0100 2021 ad5a bc41 7ef3 e008 1130 .... !.Z.A~....0 29c1 9439 6e06 0792 6511 ec5e 6520 eb50 )..9n...e..^e .P 7f9d 1647 0117 0301 0030 b2ee 0b08 f0c1 ...G.....0...... cc97 dccb a206 a52b 3065 92c0 2c7f 6e54 .......+0e..,.nT b75c 1905 d93f fb46 0d9c 0742 7a04 3648 .\...?.F...Bz.6H 556f dbb1 09c1 e636 60ad Uo.....6`. </code></pre> <p>What I want to do is extract the data out of this, specifically the TCP WindowFull and ZeroWindow. How would I go about turning these hex dumps in to plain text so they can be fed back in to Python for analysis? I don't want to use WireShark because I'm trying to make a standalone application.</p>
Tags
<python><networking><tcp><wireshark><winpcap>
Title
How can I extract plain text from a packet Hex dump?
singulars
PostAcceptedAnswerId
1. This table or related slice is empty.
PostParentId
1. This table or related slice is empty.
PostTypePostTypeId
1. PTQuestion
UserLastEditorUserId
1. This table or related slice is empty.
UserOwnerUserId
1. USPintSizeSlash3r
plurals
PostLinksPostIdRelatedPostId
1. This table or related slice is empty.
PostLinksRelatedPostIdPostId
1. This table or related slice is empty.
PostsAcceptedAnswerId
1. This table or related slice is empty.
PostsParentIdCreationDate
1. PO
  singulars
  PostTypePostTypeId
  PTAnswer
VotesPostIdCreationDate
1. VO
  singulars
  PostPostId
  POHow can I extract plain text from a packet Hex dump?
  UserUserId
  UShax0r_n_code
  VoteTypeVoteTypeId
  VTFavorite
2. VO
  singulars
  PostPostId
  POHow can I extract plain text from a packet Hex dump?
  UserUserId
  This table or related slice is empty.
  VoteTypeVoteTypeId
  VTUpMod
CommentsPostId

Querying!

Guidance

A row detail

Detail views are divided into sections. All the information in the data section comes from columns in the selected row. The other sections display data from other, related rows.

Related data can be related in a to-one or a to-many fashion. Captions of data related in a to-many fashion link to a list view showing a filtered view of the table.

Try moving around until you find a non-empty to-many entry and click on the label to get to one. You can move back to the root by clicking on the database name in the header.