Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

How can i play not pcap? #8

Open
oPean opened this issue Jan 30, 2017 · 1 comment
Open

How can i play not pcap? #8

oPean opened this issue Jan 30, 2017 · 1 comment

Comments

@oPean
Copy link

oPean commented Jan 30, 2017

I have two issue.

  1. How can i play rdp clear traffic, without wireshark, tcp, etc header? I can add the necessary header to each packet, but how to make it it is correct?
    2)Let's allow, I have no duplex. I have separately a traffic from server side and the client. what client packets are necessary to me for reproduction?
@SteveWare
Copy link
Contributor

You cannot really play without the packets as they have to be in order and with the correct timing information. Adding headers will not give you enough information, and the server and client will need to interact in the correct way for crypt handshake etc.
I guess you could slowly piece together a pcap adding headers (and the 3-way initial TCP handshake), but this would be a really painful process. There is nothing positive I can suggest here. The data you have is just not appropriate for replay. Sorry.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

2 participants