Networking Forums
Home Register Members Search Links
Member Login:

Networking Forums > Computer Networking > Linux Networking > Wireless networking sniffing

Reply
Thread Tools Display Modes

Wireless networking sniffing

 
 
seandoe51@yahoo.com
Guest
Posts: n/a

 
      09-21-2011, 10:07 PM
Apologies that this isn't to do with linux but this is the only active
group I could find on networking. Also the 'sniffing' I'm asking about
is on my own network for ethical reasons.

I downloaded an app (pirni) onto my iPad tablet which claims to sniff
packets on a wireless network. I wanted to see it working by sniffing
packets between my desktop PC and router. Initially I thought I would
have to also have my tablet running as a MITM between my PC and a 3G
network. This didn't work, the app kept complaining that I wasn't
connected to a wireless LAN, which confused me.

Eventually I looked at a howto guide which simply said I needed to
connect to a wireless network. I also had to provide an IP address to
spoof which had to be the router's IP address. I chose to monitor TCP
packets sent to port 80. I didn't see how it would work but I visited
a web page from my PC and saw my http request flash up on the screen
of the tablet.

I'm confused about how this would work. The wireless network I used is
WPA2 encrypted. Surely the packets between my PC and the router are
encrypted and even a device connected to the same network shouldn't be
able to intercept packets between other devices?
 
Reply With Quote
 
 
 
 
Wolfgang.Draxinger
Guest
Posts: n/a

 
      09-23-2011, 09:53 AM
On Wed, 21 Sep 2011 15:07:40 -0700 (PDT)
(E-Mail Removed) wrote:

> I'm confused about how this would work. The wireless network I used is
> WPA2 encrypted. Surely the packets between my PC and the router are
> encrypted and even a device connected to the same network shouldn't be
> able to intercept packets between other devices?

The device being connected to the wireless network, it knows the
encryption keys, if a PSK scheme is used. So all the device has to do
is eavesdropping on what's going over the air, completely passive and
decrypt it with the key it knows, due to connecting to the network.
There's really nothing special about it.

Using a regular Linux system, all you've to do is setting your W-LAN
interface to so called "promiscious mode" and dump all the traffic it
sees using tcpdump, pcap or Wireshark.

Per device keys are only used in so called 802.1X/EAP authentication
mode.


Wolfgang
 
Reply With Quote
Reply

« kvm bridging problem on ubuntu 11.04 | How to notify gnome (network manager?) about network connection setup by my own script/tool? »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Tips on wireless sniffing Aaron Leonard Wireless Internet 4 11-29-2011 04:57 PM
Wireless sniffing Matt Linux Networking 10 04-20-2005 11:44 PM
Wireless sniffing Matt Wireless Internet 12 04-20-2005 11:06 PM
Which wireless card for sniffing? Sumit Birla Linux Networking 5 01-20-2005 11:48 PM
best card to use for wireless sniffing on PDA s n u f f y Wireless Internet 6 06-27-2003 02:43 PM


Forum Software Powered by vBulletin®, Copyright Jelsoft Enterprises Ltd.
SEO by vBSEO 3.3.2 ©2009, Crawlability, Inc.
Contact Us - Archive - Privacy Statement - Top

1 2 3 4 5 6 7 8 9 10 11