Capturing TCPIP packets between hosts over WLAN

asked 2019-08-17 20:05:02 +0000

I'm not sure I understood the Wiki properly. What I'm interested in is TCPIP data between 2 different hosts on my WLAN network. Is this possible using Monitor Mode? Because I'm only getting 802.11 data...

OS and Wireshark version? What is the nature of your WLAN, a/b/g/n/ac??

What do you capture, can you share a capture file?

grahamb gravatar imagegrahamb ( 2019-08-17 20:09:42 +0000 )edit

Latest Kali Linux, g\n. I'm trying to capture data between my router and my Airconditioner.

Is this even possible? All examples I see online are showing pretty much the same. 802.11 Protocol.

xcalibur gravatar imagexcalibur ( 2019-08-17 20:19:27 +0000 )edit

answered 2019-08-17 20:22:26 +0000

grahamb gravatar image

Is your WLAN encrypted, e.g. WPA, WPA2?? If so yo'll need to provide the key to decrypt the data. Again, providing a capture makes giving help easier.

Yes it is encrypted with WPA2. Could you point me at a guide of some sort to do this, please? Looks like the capture will be useless now :)

xcalibur gravatar imagexcalibur ( 2019-08-17 20:26:51 +0000 )edit

nvm. Found how to do it: Cheers for the direction though!

xcalibur gravatar imagexcalibur ( 2019-08-17 20:30:36 +0000 )edit

There's also the Wireshark Wiki page on Decrypting 802.11.

While the Wireshark documentation isn't always as up to date as it should be, generally it's more up to date than older 3rd party info.

grahamb gravatar imagegrahamb ( 2019-08-17 20:33:21 +0000 )edit

