 | 1 | initial version |
Wireshark (on Windows) does not capture any direct information on which process is making connections. You would user other tools for that such as Process Monitor from SysInternals.
You may find further information in your capture such as the server name from the certificate sent as part of the TLS handshake.
Copyright Wireshark Foundation, 2017-2023 Content on this site is licensed under a Creative Commons Attribution Share Alike 3.0 license.
