Is there a way to convert wireshark .pcap files to a format that fiddler understands?
Every so often we get network traces generated from wireshark in .pcap files. Most of the time the traces contain mostly HTTP traffic which I find much easier to analyze using fiddler.
Fiddler 2 and Fiddler 4 now include import support for PCAP, PCAPNG, and NetMon files. Click File > Import > Packet Capture.
Note that only HTTP traffic will be imported (HTTPS traffic is encrypted, and FTP traffic wasn't a priority).
You can use ColaSoft Packet Player which enables to play captured .pcap files and open fiddler on capturing all processes and receive all data as it was captured.
Fiddler 4 supports pcap files.
Related
pktgen version: 3.4.2
there are multiple pcap files, and how to send those packets in multiple pcap files using DPDK pktgen?
How to use PKTGEN sent all pcap files in in a directory.
First, When I use this cmd, it just send one packet Forever and no stop.
./pktgen -l 0-1 -n 3 -- -P -m "[1].0" -s 0:/pcap/test.pcap
I tried several ways but not work.
Current DPDK pktgen has the option -s P:file, which allows specific PCAP file to associated to a DPDK port. Based on the contents of the PCAP file, either a single packet or multiple packets will be continuously sent through the selected DPDK port via PKTGEN.
using options like rate, count one can control the behaviour. Both the option to select multiple PCAP over a port is not present in Command-Line. Through LUA scripts the option is also not present too.
the only valid option is page pcap to highlight the port and packets in use and pcap show to display pcap relevant information. Hence the option to send packets from multiple pcap files via cmd line or Lua script is absent.
Note: an alternative to exploring would be DPDK hosted project https://doc.dpdk.org/burst-replay/ as the current logic reads the packets into mbuf memory and sends from the cache. You can either modify DPDK-PKTGEN or BUTST-REPLAY to accept pcap folder and read multiple pcap files to achieve the same.
I have a PCAP file from a system with SIP setup/teardown and RTP. Can I use the PCAP file to test that the compatibility of that switch with mine, by firing the packets into my switch?
If yes, how?
I have seen TCP replay, but I'm not used to it. Can I use Star Trinity?
You could use SIPP tool for testing the switch. Added pcap file into xml file and trigger.
http://sipp.sourceforge.net/doc/reference.html#UAC+with+media
I am using WWW::Mechanize module in perl to create a script which goes to another website and downloads data. When I manually go to website and download data (using firefox browser) I can capture the packets in well-readable format using http-fox addon.
But, when I run perl script doing same thing and try to capture packets using Wireshark I can not understand how to understand the captured packets. All the information which was available in above diagram (firefox) is missing in wireshark.
Also, when I click "follow-stream". I get dotted text. Like this:
How to interpret this? May be the data is encrypted. In this case how to get the RSA key?
May be the data is encrypted
The packets in the TCP connection before packet 8 are to or from the "https" port (port 443), and packets 5 and 6 are a "TLSv1 Client Hello" and a "TLSv2 Server Hello", respectively, so this is HTTP-over-TLS traffic, which is likely to be encrypted.
Your browse is probably logging decrypted HTTP-over-SSL traffic in the http-fox module, but Wireshark is capturing the traffic going on the network, which is encrypted traffic.
See the Wireshark Wiki page on SSL for some information on how to have Wireshark decrypt that traffic in some cases.
Hi
I am setting up HTTP live streaming for iOS. It is a RTSP stream that I will get on UDP and pass it on to the MediaStreamSegmenter. My questions are:
-Do I need a Mac based server so that mediastreamsegmenter tool can actually do it job? If yes then do I have any alternatives?
-Can pass a remote machine address to mediastreamsegmenter to store the segmented files and Index file?
I cant really afford a server and a Mac server for that matter....
Replies appreciated.
You don't need a Mac server. In fact, if you use Amazon S3, you can combine that with cloudfront to do RTMP streaming of your files from S3 to the user. check it out: http://aws.amazon.com/cloudfront/#highlights
You can simply pass the stream address to the media stream segmenter, and you're good to go.
I found a cheap and easy way of doing it using VLC player. I had to compile VLC for this but you can look for latest nightly builds to get the LIVEHTTP plugin.
I would like to implement HTTP live streaming for iPhone/iPad. I am following the apple standards and tools for same.
As of now my video source is one giving me live video from rtsp://123.123.123.123:554/mpeg4 (sample IP). but as HTTP live streaming and mediastreamsegmenter required to pass source over UDP network so i have twisted way bit.
So that i have used VLC player and first stream RTSP to UDP.
For example, i have stream video source from rtsp://123.123.123.554/mpeg4 and redirected it to
udp://#123.123.123.17:1234 (sample ip). i have tested this with two instance of VLC on same machine to check whether live streaming is played or not. it is working fine on VLC.
now I am user MAC OS 10.6.x (Snow leopard). and use latest tools (downloaded from Apple) fro HTTP Live Streaming
I am executing the following command from terminal
mediastreamsegmenter -b http://demo.dummy.com/stream -s 3 -D -f /Desktop/StreamParts 123.123.123.17:1234
here
http://demo.dummy.com/stream - server
/Desktop/StreamParts - Local Folder for saving .ts files
123.123.123.17:1234 - UDP url (from where live streaming is done)
But the problem is when i execute this command. it is giving me error like
no start access unit
error in pid 44(video) -- cc value should be 9 is 10, 1 is 2, 5 is 6, etc.
any idea? what is going wrong here? and what this error message is showing?
My hunch would be that the transport is incompatible. Apple's tools (i.e. mediastreamsegmenter) are expecting an MPEG2 transport stream over UDP, not just RTSP sent over UDP. The problem I have, which I'm afraid will be your next question, is how to correctly generate a MPEG2 transport stream.