|
|
|
|
|
|
by dilyevsky
894 days ago
|
|
|
Have you tried tcpdump’ing its payload on your router? If it’s plain text it should be obvious what it’s doing. If it isn’t you can still sniff which domains it’s connecting to from SNI ClietnHello message but payload will be encrypted. You can still get to it but that would require some decent soldering and hw debugging skills… |
|
|