Capturing wireless data packets without connecting to victims router
- Thread starter Maduhasa
- Start date
sfx2000
Part of the Furniture
You're likely to get the management frames if the AP is not using protected management frames (which is optional, and not often seen).
Content needs credentials, as that's all encrypted - that's goes for WPA/WPA2 (both TKIP and AES) - for both personal and enterprise...
There are obviously ways to subvert the trusted AP - but that's outside of the scope of the forums here.
Google search for WiFi Pineapple - turn-key solution for subversive things
Thanks for the reply.You're likely to get the management frames if the AP is not using protected management frames (which is optional, and not often seen).
Content needs credentials, as that's all encrypted - that's goes for WPA/WPA2 (both TKIP and AES) - for both personal and enterprise...
There are obviously ways to subvert the trusted AP - but that's outside of the scope of the forums here.
Google search for WiFi Pineapple - turn-key solution for subversive things
Actually I just want to know if there is a method to capture packets without subverting the trusted AP or getting access to the victims connected router.
Hope the questions I’m trying to tell is clear.. and I am not considering the content. So even if the content is encrypted that’s fine. Just want to know a method to capture wireless packets that’s going to and from a user’s mobile device and the router he is connected to, without getting connected to the connected router by any means..
Thanks
sfx2000
Part of the Furniture
Yes... I answered the question...
There are easy ways to just do a packet capture on Mac or Linux - with Windows, it's a bit more complicated, Acrylic WiFi with certain Broadcom cards can do this, but I've not tried it.
Capturing on OSX From the terminal - You can run the following 3 commands from a terminal to disconnect, set the channel, then begin the capture:
Replace “--channel=36” with --channel=<channel number of your AP>
Capture on Linux (assuming monitor mode support in the WiFi chipset and driver)
Replace “--channel=36” with --channel=<channel number of your AP>
There are easy ways to just do a packet capture on Mac or Linux - with Windows, it's a bit more complicated, Acrylic WiFi with certain Broadcom cards can do this, but I've not tried it.
Capturing on OSX From the terminal - You can run the following 3 commands from a terminal to disconnect, set the channel, then begin the capture:
$ sudo /System/Library/PrivateFrameworks/Apple80211.framework/Versions/Current/Resources/airport -z
$ sudo /System/Library/PrivateFrameworks/Apple80211.framework/Versions/Current/Resources/airport --channel=36
$ sudo tcpdump -s0 -I -i en0 -w capture.pcap
$ sudo /System/Library/PrivateFrameworks/Apple80211.framework/Versions/Current/Resources/airport --channel=36
$ sudo tcpdump -s0 -I -i en0 -w capture.pcap
Replace “--channel=36” with --channel=<channel number of your AP>
Capture on Linux (assuming monitor mode support in the WiFi chipset and driver)
ifdown wlan0
iw dev wlan0 set channel 36
iw dev wlan0 set type monitor
ifconfig wlan0 up
tcpdump -s0 -I -i wlan0 -w capture.pcap
iw dev wlan0 set channel 36
iw dev wlan0 set type monitor
ifconfig wlan0 up
tcpdump -s0 -I -i wlan0 -w capture.pcap
Replace “--channel=36” with --channel=<channel number of your AP>
Similar threads
Similar threads
| Thread starter | Title | Forum | Replies | Date |
|---|---|---|---|---|
|
Your data being sold? The least of your worries. | General Network Security | 2 |
Similar threads
-
Your data being sold? The least of your worries.
- Started by L&LD
- Replies: 2