Ask Your Question
0

Catch packets from my website

asked 2022-05-27 18:11:12 +0000

linuxbegginer gravatar image

Hello, so I have an HTML code which I run based on Github websites and I want to see packets going through my computer to the website which I created.

The HTML code:

<!DOCTYPE html>
<html lang="en">
<head>
  <meta charset="UTF-8">
  <meta name="viewport" content="width=device-width, initial-scale=1.0">
  <meta http-equiv="X-UA-Compatible" content="ie=edge">
  <title>Http Requests & JavaScript</title>
  <link rel="stylesheet" href="app.css">
  <link href="xhr.js">
  <script src="xhr.js" defer></script>
</head>
<body onload="initRequestInterval()">
  <section id="control-center">
    <button id="get-btn">GET Data</button>
    <button id="post-btn">POST Data</button>
  </section>
</body>
</html>

Where "initRequestInterval()" sends 5 HTTP GET requests to the client every second

Website page:

https://pages.cs.huji.ac.il/nir-vakni...

The problem:

I don't see the packets because I don't know the public IP of that website I tried to do nslookup command and the DNS tells me that he didn't find the public IP of the website. I tried to Isolate the packets I sent from my computer so I can see the HTTP GET packets from the website but without success.

Possible explanation but I am not quite sure: I use dummy HTTP GET request such as: https://reqres.in/api/users so not actual data being sent, maybe because of that?

How can I capture the HTTP request on Wireshark console?

edit retag flag offensive close merge delete

Comments

DNS says:

;; QUESTION SECTION:
;pages.cs.huji.ac.il.       IN  A

;; ANSWER SECTION:
pages.cs.huji.ac.il.    10616   IN  CNAME   web-system.cs.huji.ac.il.
web-system.cs.huji.ac.il. 10616 IN  A   132.65.118.65
Jaap gravatar imageJaap ( 2022-05-28 11:01:14 +0000 )edit

Thank you very much :)

linuxbegginer gravatar imagelinuxbegginer ( 2022-05-29 17:29:25 +0000 )edit

Other observation: HTTPS How do you expect to capture it's content?

hugo.vanderkooij gravatar imagehugo.vanderkooij ( 2022-05-30 08:29:14 +0000 )edit

2 Answers

Sort by » oldest newest most voted
0

answered 2022-05-28 21:06:35 +0000

André gravatar image

To answer your question:

How can I capture the HTTP request on Wireshark console?

Take a look at the documentation. Like: The “Capture” Menu and Start Capturing.

Regarding:

Where "initRequestInterval()" sends 5 HTTP GET requests to the client every second

That is not what happens. It's the client (browser) that sends the HTTPS requests. When a browser downloads your static webpage, it also downloads a JavaScript that triggers it to download a page 5 times per second. So the browser does the work, the webserver just serves some static objects.

I don't know the public IP of that website

Use DNS or just watch the IP-addresses recorded during capture. Or use the 'developer tool' of your browser.

I use dummy HTTP GET request such as: https://reqres.in/api/users so not actual data being sent

It is a real/working URL. So your browser does send and receive data 5 times per second. As instructed in your 'xhr.js' script line 7.

edit flag offensive delete link more
0

answered 2022-05-28 11:07:12 +0000

Jaap gravatar image

updated 2022-05-29 12:04:24 +0000

Given that your protocol is HTTP S makes that for the network the packets show up as TLS packets, unless you setup decryption parameters.

edit flag offensive delete link more

Comments

how can I catch TLS packets?

linuxbegginer gravatar imagelinuxbegginer ( 2022-05-29 17:30:22 +0000 )edit

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Question Tools

1 follower

Stats

Asked: 2022-05-27 18:11:12 +0000

Seen: 140 times

Last updated: May 29