Ask Your Question

Revision history [back]

Data in a TCP stream is unreadable. How does one figure out what the data holds? I have access to both the Server and Client versions of the software.

I am currently hosting a game server on an old online game framework called Byond. I wanted to investigate the data being sent back and forth from the client/server. I would be surprised if this data was encrypted as the code is very old and designed for old network connections like a 56k dial-up. I suspect the data is compressed for this reason. I'd like to attach a sample of my packet capture but I don't see the option. Below are two separate TCP data payloads. I am curious how professionals in the field figure out how to read data in a TCP stream when they do not know how it was compressed/encoded/encrypted.

00:0e:00:06:07:c8:1f:c7:15:fa:00:6c:00:16:6a:da:ab:a7:b4:30:83:6e:ab:3f:41:0b:ba:f2:41:27:c8:c1:c1:27:24:09

36:97:00:b7:00:01:00

Thanks,

GB