Increase the understanding of HTTP through the basic use of Wireshark
One. Basic introduction to Wireshark
two. Basic use of Wireshark
three. Fetch 1 http request
four. Analyze the data in the request
Fives. Understand http3 handshake, 4 wave hands
six. More vividly understand the ITCP/IP5 layer protocol
One. Basic introduction to Wireshark
1. Wireshark is a network packet analysis software that captures network packets and displays the most detailed network packet data as possible
2. Simply put, it is similar to the packet capture software like Charles and Fiddler, but it captures more things. For example, the left side of the figure below is an http request captured by Charles, and the right side is the request captured by the corresponding wireshark software. Very detailed
two. Basic use of Wireshark
1. Wireshark, as a professional packet capture software, has a higher entry barrier than Charles. The biggest feeling is that once packet capture is turned on, it is difficult to find the request of the address you want to capture.
2. How do you get the request for the address you want? According to the following method, it can bring you some thinking (follow it first, and then go deeper after seeing things)
- Open capture-"Capture filter
- New capture filter
- Select custom filter rules, pay attention to select Ethernet first
- Start to grab the interface: capture -) start
three. Fetch 1 http request
According to the above method, you can grab an http request
Description:
1. Grab the http request first, which is convenient for analysis, https is a bit different
2. How to grab only one interface? You can repeat the request through Charles, so you can only grab one
Look at the operation below
four. Analyze the data in the request
1.
four. Analyze the data in the request
six. More vividly understand the ITCP/IP5 layer protocol
1。