How To View MSN Chat Logs Through Network Analyzer
With the development of internet, it currently has become a must for network administrators to monitor MSN information in some comparatively more confidential networks due to the increasing divulging of information through network. Though plenty of analysis on MSN can be found on net at present, many of them only introduce a kind of thread not an practicable way to solve this and consequently lead us to some quandaries. Under this situation, we proved that MSN chat logs can be viewed through Network Analyzer through our recent analysis on MSN communication. Details are as follows:
Three most popular Network Analyzer, Sniffer Pro, Omnipeek and Colasoft Network Analyzer, are adopted with customizing a filter as the first step only to capture the data communication of MSN Protocol. In Omnipeek and Colasoft, we can directly select MSN in protocol filter, while in Sniffer Pro, no MSN Protocol can be found, but we can customize a Port filter of 1863port since TCP 1863 Port is the default operation route for MSN. Then, synchronously run three software sniffing and test MSN in local computer. Later, some data packets of MSN will be captured and then stop capturing to analyzing packets captured. According to some material, we found that MSN is encoded during Password Authentication phase, while all other information are not, and messages will begin with “X-MMS-IM-Format”. Search “X-MMS-IM-Format” in these analyzers adopted, results are listed below.
Messages captured by all three analyzers are shown to be unanimous. The highlighting part in the picture is the chat logs of MSN. And you can see corresponding ASCI data.
Chatting Specifics are still unavailable from the above shown data (For English and Numbers, chat logs can be found directly through ASCI decoding.), they need format converting with a tool named SmartConvert is add to the operation and the contents after converting are as follows through which a clear chat log of MSN is visible.
Meanwhile, there is still another way of viewing original messages, from MIME-Version: 1.0 we can see the data using the MIME format, that is, Mail Format, thus, exporting this data packet (any format), then converting it to eml and finally running it with Outlook or Foxmail.
All steps introduced above are the whole course for the test of capturing and analyzing of MSN, through these easy steps, one can have a thorough perspective of MSN communication in internet.
Three most popular Network Analyzer, Sniffer Pro, Omnipeek and Colasoft Network Analyzer, are adopted with customizing a filter as the first step only to capture the data communication of MSN Protocol. In Omnipeek and Colasoft, we can directly select MSN in protocol filter, while in Sniffer Pro, no MSN Protocol can be found, but we can customize a Port filter of 1863port since TCP 1863 Port is the default operation route for MSN. Then, synchronously run three software sniffing and test MSN in local computer. Later, some data packets of MSN will be captured and then stop capturing to analyzing packets captured. According to some material, we found that MSN is encoded during Password Authentication phase, while all other information are not, and messages will begin with “X-MMS-IM-Format”. Search “X-MMS-IM-Format” in these analyzers adopted, results are listed below.
Messages captured by all three analyzers are shown to be unanimous. The highlighting part in the picture is the chat logs of MSN. And you can see corresponding ASCI data.
Chatting Specifics are still unavailable from the above shown data (For English and Numbers, chat logs can be found directly through ASCI decoding.), they need format converting with a tool named SmartConvert is add to the operation and the contents after converting are as follows through which a clear chat log of MSN is visible.
Meanwhile, there is still another way of viewing original messages, from MIME-Version: 1.0 we can see the data using the MIME format, that is, Mail Format, thus, exporting this data packet (any format), then converting it to eml and finally running it with Outlook or Foxmail.
All steps introduced above are the whole course for the test of capturing and analyzing of MSN, through these easy steps, one can have a thorough perspective of MSN communication in internet.
1 comments:
Nice post
Post a Comment