How can I find my number in TCP header/payload?
Hello guys, i'm pretty new to wireshark and i have a question. I have to create a recording and in that i have to get my number like ex:91241 (TCP Protocol). Can anyone help me to get it right?
Can you please clarify what you're asking? By "create a recording", do you mean "capture some packets" or something else? And what do you mean by "i have to get my number"? Are you trying to find the protocol ID for the packets? Please be as clear as you can when asking questions because it's very difficult to provide useful assistance otherwise.
https://imge.to/i/PpKO2 .
Just like that to get my numbers in that
like i have a matriculation number on site and i have to get it into my wireshark as a TCP Protocol
I'm still not sure exactly what you're trying to do, but the image looks like a hex dump, presumably of packet data? In case you're trying to convert that ASCII hexdump to a pcap file that you can load into Wireshark, have a look at
text2pcap. Alternatively, you can use Wireshark's File -> Import From Hex Dump feature, which will essentially accomplish the same thing.If you're trying to do something else, then you'll have to clarify.
Do you mean "how do I find packets that have a given number, in ASCII, somewhere in the packet?"
Yea @Guy Harris. I have to find somehow in my packets my "matriculation number" and to convert it in ASCII. But i don't know how to find my "matriculation number" there i keep trying with filters and so on but can't get it.
"Create a Wireshark recording in PCAP format containing your student ID contains. The matriculation number may be in the Protocol headers or also occur in the payload. The recording should contain only your matriculation number and no further Matriculation. The transport protocol MUST be TCP. The file of Mitschnitts must be able to be opened without error in Wireshark." This is the problem i've to solve...
It sounds like you are supposed to either capture a TCP packet where the packet contains certain information, your matriculation number in this case, or that you are supposed to craft a packet yourself that contains this information.
If it's the former case, perhaps there's a web page you can load while capturing with Wireshark that contains the relevant information? If it's the latter case, you can construct a packet using various tools or just tweak existing packets with a tool like WireEdit (if you're on Windows) or even with a simple text editor, changing the ASCII hexdump to meet your needs and then importing it into Wireshark using one of the 2 methods I mentioned earlier.
If this still isn't what you're looking for, then you'll have to clarify your question further.
@cmaynard that's exactly what i have to do. can you help me to do that? how should i start?how do i do that??