tim-hilt's profile - activity

overview network karma followed questions activity

2022-05-31 14:40:41 +0000	received badge	● Famous Question (source)
2021-12-19 17:14:44 +0000	received badge	● Notable Question (source)
2021-08-27 10:24:11 +0000	received badge	● Popular Question (source)
2021-01-17 12:02:15 +0000	commented answer	802.11 only Partially Decrypted I use an AVM repeater, that expands my network by using the same SSID as the router!
2021-01-16 18:12:37 +0000	marked best answer	802.11 only Partially Decrypted Hi there! This is my first question, so please be gentle. I have an external WIFI -adaptor (`Ralink RT5572` chipset) that i put into monitor mode using the following commands (`wlp0s20f0u1` being the interface-name of course): `sudo ip link set wlp0s20f0u1 down && \ # Deactivate network interface sudo iwconfig wlp0s20f0u1 mode monitor && \ # Change mode sudo ip link set wlp0s20f0u1 up && \ # Reactivate sudo iw dev wlp0s20f0u1 set freq 5260 # Set operating-frequency; AP is at 5GHz channel 52/5.26GHz` I then captured some traffic, including an authentication process with my Huawei-Smartphone. I successfully recorded all 4 EAPOL-packets. The IP-adress of the smartphone is `192.168.178.24`. The Access-Point is an AVM Fritz!Box (which displays as `AVMAudio`). However, most of the packets are still encrypted, as can be seen looking at the trace. I have generated a WIFI-key via the online-generator and added it in the settings for the IEEE 802.11-protocol (the key is `63c3ad1ebd33ac970e3e7b603a7f52e11aa476f7cabb0d5ffeafe65fbb213910`). Because this doesn't work, i also tried adding a key via `wpa-pwd`, but that didn't change anything. I also fiddled around with the settings `Assume packets have FCS` and with the settings for `Ignore the protection bit`, however the result remained the same. The settings are now the same as in the following image: Wireshark settings for IEEE 802.11-protocol This issue sounds a lot like the one in this question, however there they have found a Key Descriptor Version of "3", while mine is at "2", which Wireshark should be able to decrypt, as far as I understood the answer in the linked question. Can anyone help me with the issue? I feel like decryption should be possible, however I tried a lot of settings and feel a bit lost at the moment. I will happily provide more information/screenshots/captures/files if needed. Thanks a lot!
2021-01-16 18:12:37 +0000	received badge	● Scholar (source)
2021-01-16 18:12:27 +0000	commented answer	802.11 only Partially Decrypted Wow - this is very thorough and useful feedback for me. I didn't know this and it helped me a lot in knowing where to lo
2021-01-16 16:29:12 +0000	commented question	802.11 only Partially Decrypted Oh interesting! I indeed use a repeater! Could you explain to me, how I could generate some actual traffic, so that i c
2021-01-16 15:03:49 +0000	commented question	802.11 only Partially Decrypted There are a lot of packets that are from Huawei to AVM and vice versa, that are still of Protokoll "802.11" instead of D
2021-01-16 15:03:42 +0000	commented question	802.11 only Partially Decrypted There are a lot of packets that are from Huawei to AVM and vice versa, that are still of Protokoll "802.11" instead of D
2021-01-16 15:03:23 +0000	commented question	802.11 only Partially Decrypted There are a lot of packets that are from Huawei to AVM and vice versa, that are still of Protokoll "802.11" instead of D
2021-01-16 14:26:30 +0000	commented question	802.11 only Partially Decrypted Oh sorry, my bad. Could you try it again now?
2021-01-16 14:11:31 +0000	received badge	● Editor (source)
2021-01-16 14:11:31 +0000	edited question	802.11 only Partially Decrypted 802.11 only Partially Decrypted Hi there! This is my first question, so please be gentle. I have an external WIFI -adap
2021-01-16 14:07:46 +0000	asked a question	802.11 only Partially Decrypted 802.11 only Partially Decrypted Hi there! This is my first question, so please be gentle. I have an external WIFI -adap