Reputation: 5037
Sniffer - How to link the GET requests with their response?
I have a function that gets all packets (in and out). I'm monitoring for GET and HTTP 200 OK. All works fine, but how to link the GET request with its OK response?
EDIT: I want to know how to do it programically. I know that professional sniffers can 'follow traffic'
Upvotes: 1
Views: 543
Answers (3)
Reputation: 1
You can use justniffer. it is extendible by scripts. a new version not yes released in trunk branch of repository is extedible by python.
Upvotes: 0
Reputation: 21086
You could use the source and destination ports of the request and response to link it to the same TCP stream.
CLIENT > TCP SRC 33333 DST 80 "GET / HTTP/1.1"
SERVER < TCP SRC 80 DST 33333 "200 OK"
Upvotes: 1
Reputation: 525
If you just want to read the traffic you can always use WireShark. It has a function to "Follow TCP Stream". If you want to program a sniffer, I would suggest lecture of http://en.wikipedia.org/wiki/Transmission_Control_Protocol.
Upvotes: 0
Related Questions
- Change Response from HTTP Request sent by a program
- Sniff HTTP packets for GET and POST requests from an application
- How to capture http request/response traffic results
- Mapping HTTP requests to HTTP responses
- How to sniff http requests
- Filter for ONLY initial GET request in tshark or tcpdump. Including HTTP and HTTPS
- Wireshark HTTP requests
- Is it possible to use packet sniffers to track GET requests
- writing a http sniffer
- HTTP packet reconstruction