Here are two packets I captured from a video game with a packet editor.
http://img841.imageshack.us/img841/1980/2packets.j...
How do I go about translating it into decimal value, or something more familiar? Is it written in hex? or what.
Copyright © 2024 QUIZLS.COM - All rights reserved.
Answers & Comments
Verified answer
It's written in hex, yes, but the decimal representation (the ASCII representation of it) is already displayed on the right. For example, the second byte is hex 20, which equals decimal 32, which is the space in the column on the right. Note that all characters that are not displayable are printed as periods.
This probably doesn't help you much in decoding the data. The problem is, for each program different encodings can exist, in fact, different versions of a programs can define different encodings (in which case the first couple of bytes in a packet could define the version of the encoding that is used in that package.) Without documentation (e.g. from the developers) for the program that generated the package, it'll be VERY hard to decode it.
Yes its in Hex. each Digit has a value 0-F (0-15 in decimal)
To decode a packet you usually need the definition of the packet, what each byte is assigned for.
You can reverse engineer it if you have enough sample data (2 packets are not enough) but it can be a slow task. You could try wireshark or ethereal which is a packet capture and analysis tool which can help identify protocols.
Looking at the first 11 bytes are identical which could be a coincidence (too little data to tell) but is more likely to be some form of header block. Knowing what the data is meant to be helps take a lot of the guess work out of it.
Yes that is HEX, and decoding it isn't 'simple', and it depends on the game, and if a decoder exists for it. If not, you would have to code a decoder for it yourself. There isn't really a universal decoder, as games almost always have a different method of encrypting and encoding the Packets and their Headers.
The two packets on there own don't mean anything, you need to know more about the underlying protocol the app is using to determine what they say.
Try using a network protocol analyzer like wireshark.
If its communicating using port 80 then you could also use something called Fiddler to decode the information.