Saving, opening, and viewing a .jpg from an TCP stream over FTP
Hello everyone,
I need help extracting a jpeg image from a TCP stream. In the capture, the image was sent over FTP, which makes this much more complicated. Here is the text of the TCP stream:
220-FileZilla Server 0.9.59 beta
220-written by Tim Kosse ([email protected])
220 Please visit https://filezilla-project.org/
AUTH TLS
502 Explicit TLS authentication not allowed
AUTH SSL
502 Explicit TLS authentication not allowed
USER admin
331 Password required for admin
PASS goats_123
230 Logged on
CWD /
250 CWD successful. "/" is current directory.
TYPE I
200 Type set to I
PASV
227 Entering Passive Mode (192,168,19,225,243,129)
STOR Cat-inside-Computer.jpg
150 Opening data channel for file upload to server of "/Cat-inside-Computer.jpg"
226 Successfully transferred "/Cat-inside-Computer.jpg"
So as you can see, the file I want to extract and view is called "Cat-insideCumputer.jpg." How do I do this? What file extension do I give the file? How do I just extract data from port 20? Every time I save the stream as a .jpg file, it does not let me view anything. I am doing this on a Windows 10 computer.
So in essence, I'm just trying to look at a jpeg image from an FTP packet capture.
Thank you.
Hi,
not sure if I can be of any help but try to access your ftp download site with web browser
I started a project to develop plugins for Wireshark to extract video frames, web pages, images and other file formats from saved tcp dump and have played/ opened by a right client
BTW
there is no cat inside "Cumputer" ;)
"Cat-insideCumputer.jpg."
Wireshark has an "Export Objects" mechanism, which allows data objects transported over various protocols to be written out to files. Currently, it supports the DICOM, HTTP, SMB, and TFTP protocols (SMB would, I think, only work if a client reads the entire file), and supports exporting anything that is identified as an Internet-format email message ("IMF" - "Internet Mail Format"), so it should handle at least some web pages and images. It doesn't handle individual video frames, and just supports saving them as files, not handing them to programs such as video players or image viewers that read them. It also doesn't handle FTP.