Get IP/host informations of an app.

2020-10-07

Muskua gravatar image

So I installed Wireshark. It's my first time doing something so tricky and I don't really know how to move in this universe. The only thing I need is the following: I got an app on my windows desktop, this is a private app, I need to identify and grab the server information which this app communicate with. I don't know how to do that, but I tried. Once I'll gain this information, I have to code a python script to interact with the data on this server. After reading some threads, watched some videos, I tried to open this app in my desktop and Wireshark, I closed everything else and I managed to get a sort of idea of what i have to search for in Wireshark interface. The fact is that I don't know what I am doing, and at a certain point I realized that I don't know exactly what information I have to search for.

Could someone help me through this madness? Thanks in advance!

2 Answers

2020-10-08

grahamb gravatar image

2020-10-08

Wireshark doesn't really have any info about applications, only network adaptors and the traffic through them.

Another tool, SysInternals Process Monitor can be set to filter only the activity of a specific application and then further filtered to only the network activity of that application.

2020-10-08

hugo.vanderkooij gravatar image

From what you describe Wireshark is not for you.

My guess you get a better understanding of things you look for by using the developer mode in your browser.

Asked: 2020-10-07

Seen: 573 times

Last updated: Oct 08 '20