Skip navigation

Category Archives: Forensics

Creative Commons License

Outcome: To extract flash streams, from sites such as youtube, from a packet capture.
These steps can also be used to extract many files, such as PDFs and MP3s.

Required tools: Perl, tcpdump, and tcpflow.

I’m quite interested in network forensics and one thing I’ve always wondered was if it is possible to extract flash, and RTMP streams from a packet capture; whilst I haven’t had much luck yet with RTMP streams (any one know how?), I have managed to sucessfully extract a flash video being streamed from YouTube, thanks to a handy perl script and blog post on rootshell.be

Read More »