Unique ID of submitted data on Wireshark
Does anyone know how to find the unique ID of submitted data in Wireshark, or could point me in the direction of where I could find out? I have tried searching online for the answer but couldn’t find one.
What do you mean by 'submitted data'? and what do you mean by 'unique ID'? are you talking about IP packets and the Identification field in the packet header for identifying packet fragments? (i.e. https://tools.ietf.org/html/rfc6864 / https://ccie-or-null.net/2014/12/02/wireshark-tid-bit-what-does-the-ip-identification-field-tell-us/ )
There's a guide to adding columns into wireshark here anyway, the IP identification field should be in that list somewhere: https://unit42.paloaltonetworks.com/unit42-customizing-wireshark-changing-column-display/
Otherwise, I don't know of any protocols which have a field called 'Unique ID', and wireshark won't be able to read protocols that it doesn't know about.
There's a guide to adding columns into wireshark here anyway, the IP identification field should be in that list somewhere: https://unit42.paloaltonetworks.com/unit42-customizing-wireshark-changing-column-display/
Otherwise, I don't know of any protocols which have a field called 'Unique ID', and wireshark won't be able to read protocols that it doesn't know about.
(edited 4 years ago)
Original post by winterscoming
What do you mean by 'submitted data'? and what do you mean by 'unique ID'? are you talking about IP packets and the Identification field in the packet header for identifying packet fragments? (i.e. https://tools.ietf.org/html/rfc6864 / https://ccie-or-null.net/2014/12/02/wireshark-tid-bit-what-does-the-ip-identification-field-tell-us/ )
There's a guide to adding columns into wireshark here anyway, the IP identification field should be in that list somewhere: https://unit42.paloaltonetworks.com/unit42-customizing-wireshark-changing-column-display/
Otherwise, I don't know of any protocols which have a field called 'Unique ID', and wireshark won't be able to read protocols that it doesn't know about.
There's a guide to adding columns into wireshark here anyway, the IP identification field should be in that list somewhere: https://unit42.paloaltonetworks.com/unit42-customizing-wireshark-changing-column-display/
Otherwise, I don't know of any protocols which have a field called 'Unique ID', and wireshark won't be able to read protocols that it doesn't know about.
It wasn't the identification field, so am unsure what the question that I am answering means by 'unique ID'. The submitted data refers to the packets. Thanks for trying
Original post by Anonymous_Cypher
It wasn't the identification field, so am unsure what the question that I am answering means by 'unique ID'. The submitted data refers to the packets. Thanks for trying
Does the question have any more information? like an example of the data/payload in those packets and the protocol? For example, it could be an HTTP packet containing some JSON data containing a field called unique ID (that'd be quite common for something like a browser and web API sending/receiving messages). An example would probably be really useful.
nvm solved it
How? Could you give us a hint?
Original post by Anonymous_Cypher
nvm solved it
Is the answer in the same packet as the flag?
it was a number in the info column. Hopefully this saves you some time.
If anyone can give me any hints for compromised host then it would be appreciated (not the answer, just guidance)
If anyone can give me any hints for compromised host then it would be appreciated (not the answer, just guidance)
(edited 4 years ago)
Original post by Anonymous_Cypher
it was a number in the info column. Hopefully this saves you some time.
If anyone can give me any hints for compromised host then it would be appreciated (not the answer, just guidance)
If anyone can give me any hints for compromised host then it would be appreciated (not the answer, just guidance)
What question are you stuck on?
Original post by n3m0byte
What question are you stuck on?
All of it. Any pointers on how to start would be appreciated
Original post by Anonymous_Cypher
All of it. Any pointers on how to start would be appreciated
If you can share the question text (and possibly link to the pcap), I’m sure some of us can help set you in the right direction.
Got it. Thanks though.
(edited 4 years ago)
Original post by Anonymous_Cypher
I have been given a windows virtual machine and I have to answer this question:
The malware persists through reboots. What is the registry key value’s name that results in the malware executing automatically?
This is all I have been given
Once I get this, I should get the gist and be able to find the other answers.
The malware persists through reboots. What is the registry key value’s name that results in the malware executing automatically?
This is all I have been given
Once I get this, I should get the gist and be able to find the other answers.
This is one of those questions that a bit of googling can solve (even if you're not well exposed to Windows).
https://docs.microsoft.com/en-us/windows/win32/setupapi/run-and-runonce-registry-keys
should help you along the right path.
(You can try it on your own PC - have it run notepad on startup or something!
)Quick Reply
Related discussions
- Btec it level 3 unit 2
- Cyberstart Forensic
- cyberstart America
- It service delivery
- Entry requirements
- Is writing a personal statement for 3 different(ish) courses too ambitious?
- {URGENT} I need some help on my personal statement
- Research project
- Cambridge interview for MPhil in population health sciences
- Imperial MSc Computing (Artificial Intelligence and Machine Learning) Applicants 2024
- BTEC IT Unit 2 January 2024 exam discussion
- lying in epq??
- Official LSE Postgraduate Applicants 2022 Thread
- Personal Statement from Oxford Student for Year Abroad at Yale - Review
- "This programme is unique in that it takes you from zero to one hundred in skills!"
- Computer Science final year project ideas, in Domain of Data Science
- Is there a way to call the Government Recruitment Service?
- UCL Management Science 2023 Applicants Thread
- Recruitment agencies asking for copy of your passport
- Help! What are CamSIS Data!?
Latest
Trending
Last reply 1 day ago
Is MathsFM French Alevels good for a CS degree at top uni (OX, UCL, Durham etc)Last reply 2 days ago
OCR A-level Computer Science Paper 1 (H446/01) - 12th June 2023 [Exam Chat]Last reply 2 weeks ago
OCR A-level Computer Science Paper 2 (H446/02) - 19th June 2023 [Exam Chat]Last reply 3 weeks ago
AQA A-level Computer Science Paper 1 (7517 1A - 1E) - 12th June 2023 [Exam Chat]Last reply 4 weeks ago
Not receiving any response from University of Birmingham.Last reply 3 months ago
OCR GCSE Computer Science Paper 1 (J277/01) - 19th May 2023 [Exam Chat]Last reply 3 months ago
AQA GCSE Computer Science Paper 2 (8525/2) - 25th May 2023 [Exam Chat]Trending
Last reply 1 day ago
Is MathsFM French Alevels good for a CS degree at top uni (OX, UCL, Durham etc)Last reply 2 days ago
OCR A-level Computer Science Paper 1 (H446/01) - 12th June 2023 [Exam Chat]Last reply 2 weeks ago
OCR A-level Computer Science Paper 2 (H446/02) - 19th June 2023 [Exam Chat]Last reply 3 weeks ago
AQA A-level Computer Science Paper 1 (7517 1A - 1E) - 12th June 2023 [Exam Chat]Last reply 4 weeks ago
Not receiving any response from University of Birmingham.Last reply 3 months ago
OCR GCSE Computer Science Paper 1 (J277/01) - 19th May 2023 [Exam Chat]Last reply 3 months ago
AQA GCSE Computer Science Paper 2 (8525/2) - 25th May 2023 [Exam Chat]
