Ask Your Question
0

unable to capture packets on Wireshark

asked 2019-05-21 14:22:25 +0000

yosra gravatar image

I am using mitmproxy to decrypt SSL packets on Wireshark which I managed to do. This is my topology:

my phone --> proxy --> server

My goal is to command the server from an application installed on my phone, so when I command the server, the information goes first to the proxy, then to the server. So I must be able to visualize the packets that my phone sends to the proxy on wireshark, but this is not happening.

Wireshark doesn't capture the packets that my phone is sending, and I am pretty sure that my phone is sending some information to the proxy because otherwise, I wouldn't be able to command the server (which is not the case).

I would appreciate some help with this!

edit retag flag offensive close merge delete

Comments

Where is your capture point in the topology you describe?

grahamb gravatar imagegrahamb ( 2019-05-21 15:06:25 +0000 )edit

@grahamb I capture the packets from the proxy (which is in the middle between the server and the android).

yosra gravatar imageyosra ( 2019-05-22 08:25:52 +0000 )edit

1 Answer

Sort by ยป oldest newest most voted
0

answered 2019-05-21 15:22:00 +0000

tantal gravatar image

Try listening any port on proxy. It could be that phone is not sending everything true proxy.

edit flag offensive delete link more

Comments

Thank you for your response, but I don't think so. on wireshark, I can see that my android makes anARP request to find out the MAC address of my server but it receives nothing. Then it asks for the MAC address of the proxy and it receives it. So I guess there isn't a direct communication between my android and my server.

yosra gravatar imageyosra ( 2019-05-22 08:25:20 +0000 )edit

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Question Tools

Stats

Asked: 2019-05-21 14:22:25 +0000

Seen: 58 times

Last updated: May 21