关于WSARecv接收包的数据不对,高手请进 满分

tangwei2000 2009-12-17 12:56:43
function MyWSARecv( s : TSocket; lpBuffers : PWSABUF; dwBufferCount : DWORD; var lpNumberOfBytesRecvd :

DWORD; var lpFlags : DWORD;
lpOverlapped : LPWSAOVERLAPPED; lpCompletionRoutine : PWSAOVERLAPPED_COMPLETION_ROUTINE ): Integer;

stdcall;
var
dwSize: cardinal;
begin
//这儿进行接收的数据处理
WriteProcessMemory(ProcessHandle, AddWSARecv, @OldWSARecvProc[0], 8, dwSize);
recvout(lpBuffers.buf,'接收 WSARecv',lpBuffers.len);
Result :=OldWSARecv(

s,lpBuffers,dwBufferCount,lpNumberOfBytesRecvd,lpFlags,lpOverlapped,lpCompletionRoutine);
JmpWSARecvCode.Address := @MyWSARecv;
WriteProcessMemory(ProcessHandle, AddWSARecv, @JmpWSARecvCode, 8, dwSize);

end;

大家请看,

====================================================
接收 WSARecv 长度:1024
----------------------------------------------------
十六进制
----------------------------------------------------
78 52 1E 00 84 EE 12 00 4F 66 69 76 E8 03 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00 C6 17 00 D8 52 15

00 00 00 00 00 C8 7E 1E 00 F0 05 1B 00 9C EE 12 00 B9 65 69 76 00 00 00 00 D8 52 15 00 78 82 1E 00 F0 05

1B 00 A8 EE 12 00 58 65 69 76 D8 52 15 00 C0 EE 12 00 44 CB 68 76 D8 52 15 00 28 66 1E 00 00 00 00 00 78

82 1E 00 D8 EE 12 00 F2 CA 68 76 00 C6 17 00 00 00 00 00 00 00 00 00 F0 05 1B 00 E8 EE 12 00 5A 64 69 76

D8 52 15 00 C8 7E 1E 00 2C EF 12 00 44 68 69 76 78 82 1E 00 7C 82 1E 00 A0 66 1E 00 80 82 1E 00 00 00 00

00 2C 00 00 00 A4 66 1E 00 00 C6 17 00 28 66 1E 00 00 00 00 00 00 00 14 00 80 9A 80 7C C8 7E 1E 00 00 00

00 00 00 00 00 00 38 EF 12 00 96 67 69 76 00 00 00 00 50 EF 12 00 44 CB 68 76 28 66 1E 00 C8 7E 1E 00 00

00 00 00 00 00 00 00 68 EF 12 00 F2 CA 68 76 00 C6 17 00 00 00 00 00 00 00 00 00 E0 F1 1C 00 84 EF 12 00

55 CF 68 76 28 66 1E 00 C8 7E 1E 00 E0 F1 1C 00 00 00 00 00 00 00 00 00 98 EF 12 00 4D CC 68 76 00 00 00

00 00 C6 17 00 E0 F1 1C 00 B0 EF 12 00 44 CB 68 76 E0 F1 1C 00 00 00 00 00 00 00 00 00 00 00 00 00 C8 EF

12 00 F2 CA 68 76 00 C6 17 00 00 00 00 00 00 00 00 00 00 C6 17 00 F0 EF 12 00 F5 CC 68 76 E0 F1 1C 00 E2

40 69 76 FC F1 12 00 78 59 E8 00 01 00 00 00 00 00 00 00 C8 7E 1E 00 C8 7E 1E 00 14 F0 12 00 D6 60 69 76

00 00 00 00 00 00 00 00 00 00 00 00 78 59 E8 00 1D 00 00 00 00 00 00 00 13 00 00 00 34 FA 12 00 77 A8 7E

00 10 00 CC 00 00 00 00 00 00 00 00 00 78 59 E8 00 1D 00 00 00 73 0A 8C D0 01 00 00 00 38 F2 12 00 F0 12

00 40 57 65 62 20 43 6C 69 65 6E 74 20 31 2E 30 00 00 0E 00 00 00 0F 00 00 00 40 00 00 00 F8 77 E8 00 02

02 20 00 AA F3 77 00 E8 F0 12 00 1F 00 00 00 1F 00 00 00 03 00 00 00 0A 7A F1 44 39 38 2E 31 32 36 2E 31

38 31 2E 31 30 30 00 F9 0E 00 00 00 0F 00 00 00 20 00 00 E8 2F 71 75 65 72 79 2E 61 73 70 00 B7 F0 12 00

0A 0A 00 00 00 0F 00 00 00 50 00 00 00 08 00 CC 00 0C 00 CC 00 10 00 CC 00 41 63 63 65 70 74 2D 4C 61 6E

67 75 61 67 65 3A 20 7A 68 2D 63 6E 0D 0A 00 00 FE 7F 46 87 F1 A4 63 A4 78 00 46 CF 77 00 6A BB 78 00 46

CF 77 00 FC F1 12 00 78 59 E8 00 34 FA 12 00 78 59 E8 00 8C 01 00 00 3C F0 12 00 16 02 20 00 40 F3 12 00

06 02 20 00 56 F2 12 00 06 02 20 00 38 F2 12 00 3C F0 12 00 01 00 00 00 D8 F1 12 00 01 00 00 00 38 F2 12

00 34 FA 12 00 4C F1 12 00 78 59 59 00 56 F2 12 00 FC F1 12 00 38 F2 12 00 FA F1 FC 00 00 FA F1 FC 00 FA

F1 FC 59 F2 77 00 FA F1 FC 77 38 F2 5B F1 12 00 77 00 00 00 38 F2 12 00 34 FA 12 00 86 F1 12 00 78 59 93

06 20 00 01 00 00 00 87 BA 0E 32 A8 F1 12 00 9C F1 12 00 A4 F1 A6 3C 06 02 12 00 A3 C4 F1 FC 00 FF 12 00

92 C7 01 00 F1 12 00 06 A4 F1 12 00 06 02 20 00 01 00 00 00 38 F2 12 00 34 FA 12 00 68 F1 12 00 E0 F0 12

00 3C F0 12 00 7B 0A 8C D0 40 F3 12 00 4B 93 43 00 00 00 00 00 F0 A6 7A 00 38 F2 12 00 A7 0B 8C D0 11 01

00 00 58 05 44 00 58 F3 12 00 01 00 00 00 2D 31 3A 22 78 59 E8 00 40 00 00 00 B0 F2 12 00 00 77 00 F9 03

E9 77 00 B0 31 1D FF 20 00 00 60 00 00 00 00 0F 00 00 00 31 31 39 30 35 37 39 37 00 00 00 00 00 00 00 00

00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 68 74 74 70 3A 2F 2F 39 38 2E 31 32 36 2E 31 38 31 2E 31

30 30 2F 71 75 65 72 79 2E
----------------------------------------------------
字符串
----------------------------------------------------
xR 勵 Ofiv? ? 豏 葉 ? 滎 筫iv 豏 x? ?  Xeiv豏 李 D薶v豏 (f x? 仡

蚴hv ? ? 桀 Zdiv豏 葉 ,? Dhivx? |? 爁 €? ,  ? (f €殌|葉 8? 杇

iv P? D薶v(f 葉 h? 蚴hv ? 囫 勶 U蟞v(f 葉 囫 橈 M蘦v ? 囫 帮 D

薶v囫 蕊 蚴hv ? ? 痫 跆hv囫 釦iv xY 葉 葉 ? 謄iv xY

4? w▇ xY s
屝 8? ? @Web Client 1.0 @ 鴚 w 桊
z馜98.36.181.100 ? ?query.asp 佛

P Accept-Language: zh-cn
?F囻 F蟱 j粁 F蟱  xY 4? xY ? <? @? V? 8? <? 伛 8? 4? L? xYY V?  8? 

 黋騱 黽8騕? w 8? 4? 嗰 xY? 嚭2 滖 ゑ? D顸  捛 ? ゑ 8? 4? h? 囵 <?

{
屝@? K揅 穰z 8? ?屝 XD X? -1:"xY @ 膀 w ?閣 ? ` 11905797

http://98.36.181.100/query.
----------------------------------------------------

这个是我获取的数据包。

来源地址:98.36.181.100:80
目标地址:192.168.1.6:3179
数据包大小:216
HEX数据:
48 54 54 50 2F 31 2E 31 20 32 30 30 20 4F 4B 0D 0A 44 61 74 65 3A 20 54 68 75 2C 20 31 37 20 44 65 63 20

32 30 30 39 20 30 34 3A 34 33 3A 32 31 20 47 4D 54 0D 0A 53 65 72 76 65 72 3A 20 4D 69 63 72 6F 73 6F 66

74 2D 49 49 53 2F 36 2E 30 0D 0A 50 72 61 67 6D 61 3A 20 4E 6F 2D 43 61 63 68 65 0D 0A 43 6F 6E 74 65 6E

74 2D 4C 65 6E 67 74 68 3A 20 36 0D 0A 43 6F 6E 74 65 6E 74 2D 54 79 70 65 3A 20 74 65 78 74 2F 68 74 6D

6C 0D 0A 45 78 70 69 72 65 73 3A 20 57 65 64 2C 20 31 36 20 44 65 63 20 32 30 30 39 20 30 34 3A 34 33 3A

32 30 20 47 4D 54 0D 0A 43 61 63 68 65 2D 63 6F 6E 74 72 6F 6C 3A 20 6E 6F 2D 63 61 63 68 65 0D 0A 0D 0A

66 61 69 6C 5F 30
ASCII数据:
HTTP/1.1.200.OK..Date:.Thu,.17.Dec.2009.04:43:21.GMT..Server:.Microsoft-IIS/6.0..Pragma:.No-

Cache..Content-Length:.6..Content-Type:.text/html..Expires:.Wed,.16.Dec.2009.04:43:20.GMT..Cache-

control:.no-cache....fail_0

这个是我用其它软件获取的包,相差太多了。请问一下,是怎么一回事.
...全文
147 5 打赏 收藏 转发到动态 举报
写回复
用AI写文章
5 条回复
切换为时间正序
请发表友善的回复…
发表回复
tangwei2000 2009-12-17
  • 打赏
  • 举报
回复
但是,那个发送的数据包都差不多呀!
tangwei2000 2009-12-17
  • 打赏
  • 举报
回复
我用的那个软件不是嗅探器。
gyk120 2009-12-17
  • 打赏
  • 举报
回复
有些嗅探器用的是NDIS中间层驱动,可能信息不一致,另外也可以考虑下嗅探器是否能智能识别某些简单加密算法的情况
tangwei2000 2009-12-17
  • 打赏
  • 举报
回复
谢了
imho888 2009-12-17
  • 打赏
  • 举报
回复
没用过,帮你顶

1,593

社区成员

发帖
与我相关
我的任务
社区描述
Delphi 网络通信/分布式开发
社区管理员
  • 网络通信/分布式开发社区
加入社区
  • 近7日
  • 近30日
  • 至今
社区公告
暂无公告

试试用AI创作助手写篇文章吧