How does a packet of RDP mouse/keyboard click look?

1

I just cant find it on wireshark when sniffing the RDP connection..

Can anyone show me how they look and how can I distinguish between them?

Of course it would be encrypted but the main question is how do I know it its a mouse click packet/ keyboard press packet or another one? Is there something different on the header? What is it?

Ty!

NirPes

Posted 2014-03-15T09:57:25.663

Reputation: 135

Answers

0

Not exactly the answer you were looking for possibly helpful: http://sourceforge.net/projects/rdesktop/files/rdesktop/1.8.1/ the rdesktop project is an open source implementation of remote desktop client for linux. it is open and thus you can inspect the code within. I'm sure it has code for handling input transmission.

Horatiu

Posted 2014-03-15T09:57:25.663

Reputation: 104

ty, but I have to see the orginal windows RDC RDP packets.. – NirPes – 2014-03-15T10:31:29.460

from my knowledge it was reverse engineered using packet capture. and from my experience using it, it works quite well. on the other hand, you can look at http://msdn.microsoft.com/en-us/library/hh871750.aspx

it has a list of files (zip download) listing all open specifications remote-desktop related.

– Horatiu – 2014-03-15T10:48:23.220

Asked: 2014-03-15T09:57:25.663

Viewed: 350 times

Active: 2014-03-15T10:26:37.070