OSQA is unmaintained. Help us figure out where to go from here.

I have captured full four EAPOL handshakes. But the data captured were not decrypted (always show 802.11 protocols).

Can you give me some directions, how can I decrypt the captured data.

Thanks, --William

asked 17 May, 19:28

dknovo's gravatar image

dknovo
62
accept rate: 0%

converted to question 18 May, 03:05

grahamb's gravatar image

grahamb ♦
19.1k328203

This question was originally posted as an "answer" to this question.

(18 May, 03:07) grahamb ♦

In some cases it helps to toggle the combo box in the wireless toolbar from "Wireshark" to "None" and back to "Wireshark": https://ask.wireshark.org/questions/60947/why-isnt-wireshark-decrypting-80211-traffic-in-my-capture-even-if-the-eapol-handshake-is-present/60951

permanent link

answered 18 May, 13:17

Christian_R's gravatar image

Christian_R
1.8k1524
accept rate: 16%

edited 18 May, 13:24

Hi Christian_R,

Thank for your input, However, there is no combo box as you mentioned in the Wireshark version I'am using now (2.2.6 version - the latest Wireshark version). Therefore, I cannot decrypt the captured data. Any other solution can I try?

Thanks, -William

(11 hours ago) dknovo

What OS do you use? The same combobox Canberra found in the decryption key dialogue.

(2 hours ago) Christian_R
Your answer
toggle preview

Follow this question

By Email:

Once you sign in you will be able to subscribe for any updates here

By RSS:

Answers

Answers and Comments

Markdown Basics

  • *italic* or _italic_
  • **bold** or __bold__
  • link:[text](http://url.com/ "title")
  • image?![alt text](/path/img.jpg "title")
  • numbered list: 1. Foo 2. Bar
  • to add a line break simply add two spaces to where you would like the new line to be.
  • basic HTML tags are also supported

Question tags:

×130
×60
×37

question asked: 17 May, 19:28

question was seen: 109 times

last updated: 2 hours ago

p​o​w​e​r​e​d by O​S​Q​A