I’m trying to find all the websites visited along with their IP srs and destination addresses but all I’m getting is a “No response found!”.
PS: I am given the .pcap file so I can’t modify it.
Also using the ICMP protocol, any help?
I’m trying to find all the websites visited along with their IP srs and destination addresses but all I’m getting is a “No response found!”.
PS: I am given the .pcap file so I can’t modify it.
Also using the ICMP protocol, any help?
Your issue is the use of the ICMP protocol - that is really only used for ping and connectivity checking type things.
In order to check what websites are visited, you need to enable TCP (particularly on port 80), then inspect each packet for the "host:" header which will tell you the address.
Another partial solution (which can help with HTTPS sites, but also inject other unrelated sites) would be to monitor port 53 (UDP + TCP, mainly UDP) to get the DNS requests which will tell you what hosts are being asked for.