Get IP/host informations of an app.

asked 2020-10-07 18:12:01 +0000

So I installed Wireshark. It's my first time doing something so tricky and I don't really know how to move in this universe. The only thing I need is the following: I got an app on my windows desktop, this is a private app, I need to identify and grab the server information which this app communicate with. I don't know how to do that, but I tried. Once I'll gain this information, I have to code a python script to interact with the data on this server. After reading some threads, watched some videos, I tried to open this app in my desktop and Wireshark, I closed everything else and I managed to get a sort of idea of what i have to search for in Wireshark interface. The fact is that I don't know what I am doing, and at a certain point I realized that I don't know exactly what information I have to search for.

Could someone help me through this madness? Thanks in advance!

edit retag flag offensive close merge delete

add a comment

2 Answers

Sort by » oldest newest most voted

answered 2020-10-08 09:03:15 +0000

grahamb

flag of United Kingdom of Great Britain and Northern Ireland

23790 ●4 ●950 ●227 https://www.wireshark.org

updated 2020-10-08 09:03:50 +0000

Wireshark doesn't really have any info about applications, only network adaptors and the traffic through them.

Another tool, SysInternals Process Monitor can be set to filter only the activity of a specific application and then further filtered to only the network activity of that application.