Upload File

sec 503.5 case 2 solution. find a string in a packet

  • Home
  • Documents
  • Sec 503.5 Case 2 Solution. Find a string in a packet
21
Sec 503.5 Case 2 Solution

Upload: maximillian-harris

Post on 30-Dec-2015

216 views

Category:

Documents


0 download

Report

Tags:

TRANSCRIPT

Page 1: Sec 503.5 Case 2 Solution. Find a string in a packet

Sec 503.5 Case 2

Solution

Page 2: Sec 503.5 Case 2 Solution. Find a string in a packet

Find a string in a packet

Page 3: Sec 503.5 Case 2 Solution. Find a string in a packet

Find the string smsses.exe

Page 4: Sec 503.5 Case 2 Solution. Find a string in a packet

Frame 208 is the 1st Fragment

Page 5: Sec 503.5 Case 2 Solution. Find a string in a packet

Frame 209 gives us the last fragment frame

Page 6: Sec 503.5 Case 2 Solution. Find a string in a packet

Frame 231 is the Last Fragment and Contains the File Size

Page 7: Sec 503.5 Case 2 Solution. Find a string in a packet

Analyze>Follow TCP Stream shows the PE Header (MZ)

Page 8: Sec 503.5 Case 2 Solution. Find a string in a packet

Further into the stream is the end of the executable

Page 9: Sec 503.5 Case 2 Solution. Find a string in a packet

Save the raw file

Page 10: Sec 503.5 Case 2 Solution. Find a string in a packet

The extract_file.raw is considerably larger than SMSSES.EXE

(file size 24576)

Page 11: Sec 503.5 Case 2 Solution. Find a string in a packet

Open extract_file.raw in Hex Editor

Page 12: Sec 503.5 Case 2 Solution. Find a string in a packet

Locate the Header MZ or Hex 4D5A90

Page 13: Sec 503.5 Case 2 Solution. Find a string in a packet

Remove Packet Data before MZ Header

Page 14: Sec 503.5 Case 2 Solution. Find a string in a packet

File after removing bytes preceeding MZ Header

Page 15: Sec 503.5 Case 2 Solution. Find a string in a packet

24576 is 6000 in Hex

Page 16: Sec 503.5 Case 2 Solution. Find a string in a packet

Remove everything after the offset

Page 17: Sec 503.5 Case 2 Solution. Find a string in a packet

Find ics.exe

Page 18: Sec 503.5 Case 2 Solution. Find a string in a packet

Packet 8092 start of tranfer

Page 19: Sec 503.5 Case 2 Solution. Find a string in a packet

Packet 8093 shows last fragment is 8134 (which will have the file size)

Page 20: Sec 503.5 Case 2 Solution. Find a string in a packet

File size is 45056

Page 21: Sec 503.5 Case 2 Solution. Find a string in a packet

Total size of raw file


1 The String Class F Constructing a String: F Obtaining String length and Retrieving Individual Characters in a string F String Concatenation (concat)

String String Builder. System.String string is the alias for System.String A string is an object of class string in the System namespace representing

Consensus Committee Report: Initial Formal Action on .../media/Files... · PC071 6254 Suzanne Boxman 503.5 Landscape plan Accept as Modified PC072 BC22 Thomas Pape 503.5 Landscape

L14 string handling(string buffer class)

Efficient and High-Speed FPGA-based String Matching …sourdis/MS_thesis.pdf · Efficient and High-Speed FPGA-based String Matching for Packet Inspection ... 66 7.2 Hybrid ... of

The String Familysierravistasymphony.org/.../2019/10/Teacher-Packet-bbb.docx · Web viewThe string family is comprised of 1st violins, 2nd violins, violas, cellos, and double basses

for the Cromano String Quartet Revoltijo€¦ · for the Cromano String Quartet omaggio a S.Revueltas. 2 = string numbers (i.e. first string, second string, third string, forth string.)

OpenText Documentum ArchiveServicesforSAP · Sub Filter(arg_path As String, arg_dm_doc_type As String,_ arg_dm_archive As String,_ arg_obj_id As String, arg_docbase As String,_ arg_user

€¦ · Web viewSaxophone Quartet ° Mixed Chamber Ensemble ° Variable Instrumentation •INSTRUMENTAL SOLO MUSIC • STRING MUSIC °String Quartet °String Trio °Solo String

2017 - string furniture · 2017. string ® system string® +

Sunleif Rasmussen: String Against String

Chapter 500 - Specific Encroachment Permits · Specific Encroachment Permits . 503.3 503.4 503.5 503.5A 503.5B 503.5C 503.5D 503.5E 503.5F 503.6 504 505 505.1 505.2 505.2A 505.2B

Do Now: Mental Math String Please do the Mental Math String found in your packet Perform all steps mentally, but please write down ONLY your final answer

String handling(string class)

L13 string handling(string class)

ACI 503.5 (R2003) Guide for the Selection of Polymer Adhesives With Concrete

Completion Data SubscriptionsDRILLING_CONTRACTOR_NM String IS_MULTIPLE_COMPLETION String Y, N DID_PREFLOW_48_HOURS String Y, N PIPELINE_CONNECTION String ANY_CONDENSATE String Y, N

Packet Classification and Pattern Matching Algorithms for High …security.riit.tsinghua.edu.cn/teacher/HighPerformance... · 2018-09-19 · multi-pattern string matching algorithms

CHAPTER 8 File Input Output Part 1: String. The String Class Constructing a String: String message = "Welcome to Java“; String message = new String("Welcome

Pencocokan String String/Pattern Matching

Medicaid Behavioral Health Clinic/Rehabilitation Services ... Health/Be… · child, sexual offenses, healthcare fraud, or felony forgery. Please Refer to section 503.5 for a full

Class string and String Stream Processing

Schubert String Quintet & String Quartet D703

String and string manipulation

Lecture 4 OOP Course. 4. Operators Using constructors: String int main(){ String s1(“My String”); String s2(s1); String s3; s3=s1; } int main(){ String

ACTIVITY MODELS - Teknik Kimia | Chemical Engineeringtekim.undip.ac.id/staf/istadi/files/2013/11/AdvanceThermodynamics... · sat=503.5 mmHg at azeotrope: x 1 ... For the infinite-dilution

Jaeki Song JAVA Lecture 07 String. Jaeki Song JAVA Outline String class String comparisons String conversions StringBuffer class StringTokenizer class

Violin Summer Packet 2018 - CAMBRIDGE MUSIC DEPARTMENT · VIOlin Name: D Major Scale G Major Scale (starting on G string) C Major Scale (starting on the G string) G Major Scale (starting

Taxation in Midwest Casinos · SCALE OF CASINO TAX REVENUE State 2010 Casino Tax Revenue (millions) Pennsylvania 1,328.0 Indiana 874.9 Nevada 835.4 Louisiana 572.0 New York 503.5

String handling(string buffer class)

Regd. Off. Plot No. A-40, Unit 301 ...€¦ · String Builder Class. String Versus String Buffer. Special methods of String Buffer What to choose between String and String Buffer

DFC: Accelerating String Pattern Matching for …•Looking for known patterns in packet payloads −String pattern matching (Fixed-length string) and Regex matching (PCRE) −5K ~

String & Composition. Agenda This keyword. String class. String operations. Composition

11- String and string builder JAVA

Strings · Strings Representation in C String Literals String Variables String Input/Output printf, scanf, gets, puts String Manipulations String Functions strlen, strcpy, strncpy,