Ask Your Question
0

How to use Wireshark to find where an application queries for updates?

asked 2024-05-09 14:28:59 +0000

AScott_WWF gravatar image

Hello,

I am trying to learn how to use Wireshark with what I believe should be a quite simple task. As most modern software has a 'check for updates' feature built in, I'd like to understand how to capture the address (URL) the application is querying for newer software versions.

For example Microsoft SQL Server Management Studio, appears to make a call to the domain go.microsoft.com during it's check for updates, but I have been unable to capture the full URL - I believe this might be because the connection is excrypted using TLS v1.2 I would like to use WireShark to present me with the full URL that the software is checking for updates against, so I can build some automation to grab new versions when they are released.

edit retag flag offensive close merge delete
add a comment

1 Answer

Sort by ยป oldest newest most voted
0

answered 2024-05-09 14:33:39 +0000

grahamb gravatar image

Because of the use of TLS, that might be difficult.

I think you're attacking the problem the wrong way, you could look into system management solutions that will identify applications and report if updates are available. A poor mans solution would be to build some scripting around the use of winget. Why oh why did the MS PM allow that out the door without a PowerShell interface I'll never know. Apparently that will be coming soon.

edit flag offensive delete link more

Comments

Thanks Graham, I thought that might be the case, From what I've found out it looks like the SSMS checks the content of an SMSS_PRODUCTRELEASES.XML file to obtain the latest version number and download URL, however, the URL to the XML file changes with each release <facepalm> e.g. v20.0 was served from https://go.microsoft.com/fwlink/?link...</facepalm>

I'm actually using the Evergreen PowerShell Module to aid our automation, but everytime Microsoft release a new version of SSMS, Evergreen is behind the curve - all because Microsoft don't have a static file location for their product versions.

AScott_WWF gravatar imageAScott_WWF ( 2024-05-09 14:54:55 +0000 )edit

SSMS is available via winget, e.g.

> winget show --id Microsoft.SQLServerManagementStudio
Found Microsoft SQL Server Management Studio [Microsoft.SQLServerManagementStudio]
Version: 20.1
Publisher: Microsoft Corporation
Publisher Url: https://www.microsoft.com/
Publisher Support Url: https://aka.ms/ssms-feedback/
Author: Microsoft
Moniker: ssms
Description: SQL Server Management Studio (SSMS) is an integrated environment for managing any SQL infrastructure, from SQL Server to Azure SQL Database. SSMS provides tools to configure, monitor, and administer instances of SQL Server and databases. Use SSMS to deploy, monitor, and upgrade the data-tier components used by your applications, and build queries and scripts.
Homepage: https://learn.microsoft.com/en-US/sql/ssms/download-sql-server-management-studio-ssms
License: Proprietary
License Url: https://learn.microsoft.com/en-US/Legal/sql/sql-server-management-studio-license-terms
Privacy Url: https://privacy.microsoft.com/
Copyright: Copyright (c) Microsoft Corporation
Release Notes Url: https://learn.microsoft.com/en-US/sql/ssms/release-notes-ssms#201
Tags:
  management-studio
  sql
  sql-management-studio
  sql-server
  ssms
Installer ...
(more)
grahamb gravatar imagegrahamb ( 2024-05-10 08:16:27 +0000 )edit
add a comment

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Question Tools

subscribe to rss feed

Stats

Asked: 2024-05-09 14:28:59 +0000

Seen: 54 times

Last updated: May 09