I am currently living in a hostel and connect to the internet via the hostel's centralized router.
I am trying out a software and wish to find out whether it calls home, that is, capture data packets from my OS and send them to the software vendor.
Can I use Wireshark to see whether the software in question send data packets back to the software vendor?
Can Wireshark reveal the contents of the data packets?
My OS is Microsoft Windows 7, 64-bit.
asked 02 Jun '13, 18:32
Wireshark can capture all the packets coming or going from your computer's interface toward the Internet, so the short answer is yes it can get the traffic.
However, if you don't know anything about the traffic that could be being used to 'phone home', you may find it difficult to tell the normal traffic in your packet captures from the traffic that is phoning home, if it exists at all.
Wireshark can reveal/decode the contents of data packets, yes. If the application can't be decoded for any reason you will at a minimum see the binary data being sent across the wire. Note that doesn't mean the traffic isn't encrypted, but you can for sure get visibility to the bits leaving the wire.
answered 02 Jun '13, 19:25