Good day, everyone,
i am the rookie in using Wireshark since i only discovered it last week, as a pet project i am trying to reconstruct a simple text file that i transmitted between PCs wirelessly and unencrypted.
For the testing scenario for the project, i now setup 2 PCs (PC A and B) with WLAN PCI card and a Dell router as the access point (AP). And if PC A sends the text file to PC B wirelessly and unencrypted, the file will route through the AP then to PC B. To transmit the text file, i simply share one of the folders out from PC A so PC B can also see it when the file is dropped in the folder.
Now, i get the cap file that recorded the process, and i know SMB protocol is being used for the transmission, how may i reconstruct the text file that was transferred?
I know Wireshark can reassemble packets, so should i dig in to the Wireshark source code and which section should i be concentrating on for now?
Thank you and wish you all have a nice day.
Regards,
Kevin
