Wireless sniffing using Wireshark lets engineers troubleshoot poor performance and connectivity problems, as well as analyze traffic activity on the network. The chapter explores the challenges of sniffing wireless and configuring Linux and Windows for wireless sniffing and analysis. The wireshark tool in itself will not help us in getting through the troubleshooting unless we have a good knowledge and understanding of the protocol, the topology of the network and which data points to consider taking sniffer traces. I wanted to make some project for my school and i need to see all traffic on network. It's open network without passwords (like in shops) so i wanted to write project on security topic and how someone could see your activity on network. For that i need to see all activity on network. Actually, any of the wlan filters, in order to filter by SSID or MAC, works. In Wireshark, in the WiFi interface, if I go to details, I see that the 802.11 WLAN option is disabled so there is no 802.11 WLAN traffic captures. However, by investigating my PC drivers, apparently there is one driver that does it. How to sniff a network. You can plug your protocol analyzer into the hub and see both sides of the traffic. Just because your hub says on the outside that it is a hub doesn’t mean that it's on. Some of the vendors in the entry-level end of the market sometimes use the same production line to produce hubs and switches. Wireshark meant to inspect the packet sent and let say if I have wireshark on my system and there are multiple user to the same network than yes you can sniff into the packet but if they are using VPN or any other tool to secure or encrypt their data then you might struggle.
Posted by2 years ago
Archived
My roomates phone syncs or backs up every so often rendering the internet speed useless. He doesn't know which app does it and after I tried stopping all backups I could, the problem persisted. I thought I could sniff the packets coming from his phones IP and get extra insight on which app causes the problem.
In general I've also been wondering how this is done every now and then. What I'm looking for is a tool that captures all the data being sent or received by a specific IP on the wireless network. I've looked at the following:
Wireshark Wifi Capture
Wireshark Monitor Wifi
TCPDUMP: Produces exactly what I want but only for my IP. Seems to throw away any packets which doesn't originate or is not destined for my computer.
AIRCRACK-NG: Doesn't seem to display what the packet contains. Tabctl32 ocx. Only the source and destination mac addresses. I assume aircrack-ng works on too a low level in the TCP-IP stack to do what I want to do.
Wireshark For Wifi
Basically what I want is to run TCPDUMP and see the output as if I executed this on a different machine on my wireless network.