Resolving DNS server MAC address using ARP (Address Resolution Protocol) See the details below for my capture.ģ) The virtual machine broadcasts a dhcp request packet, saying " Hey server, I accept what you have sent me".Ĥ) The dhcp server answers with a dhcp ack packet which lets the virtual machine know that the IP address is registered for it during period of leasing time. The steps are below.ĪLSO READ: Malicious Resource Detection with Python, Wireshark and VirustotalĢ) When the dhcp server receives the discover packet, it processes the request and responses back to the virtual machine with the offer packet, in short saying " Hey client, do you want this IP address with these options". I assume that the virtual machine installation is complete. Linux distros are less noisy compared to Windows in terms of creating network activity during booting process, so I will pick Kali distro.
There are multiple ways to capture network activity during computer booting process. As soon as we get a http response back from the server, we will stop the capturing. To capture all network activity, Wireshark must be started to listen our network interface during computer booting process and continue to capture packets until we open our web browser and create a http request.
We will cover packet level inspection protocol by protocol in this article. Have you ever wondered, what happens in the packet level, until you get a http response from a web server?
0 kommentar(er)
