How to view data from wifi capture? - wifi

I am running wireshark on my home network to learn some things. My network is wpa and I know the key, is it possible to reconstruct the ethernet packets?
I know that after you connect to wpa there is a negotiation of a new key, I assume this is ssl or something like that where it uses a public private key mechanism so I can't see it but I wanted to make sure. if it isn't a public private key mechanism and I capture the handshake can I see the rest?
If the network was an unencrypted open network would I be able to reconstruct the communications?
Also, I am running wireshark in monitor mode so that I get the raw wifi packets. Do I have to worry about channel or does it catch all wifi over the air.
Thank you

To do that, you would have to implement router's firmware in own software (cipher/decipher routines). Software that could interest you is CommView and aircrack-ng.

Do I have to worry about channel or does it catch all wifi over the
air.
Yes, you do have to set the channel on the adapter to the channel where you expect the traffic.

Related

Usb internet key & Raspberry: disable internet connection, used only for sms

I would like to use a USB internet Key Huawei E3531i for send and receive SMS.
I'm working on it, I can send but I have some issue receiving but this is not the topic of this thread.
When I plug the USB stick the Raspberry (connected to wireless lan) doesn't have access to internet any more. Most probably because somehow the internet key is considered as preferred connection but I don't have idea how to change this.
The best for me would be that the USB stick is not used at all for internet connection, even the wireless lan is not available.
How to configure this?
Thanks
Andrea
SOLVED!
Editing the file: /etc/dhcpcd.conf
Adding the metric for each interface. In this way I can drive the priority of routing for internet connection:
interface wlan0
metric 200
interface eth1
metric 300
The smaller number has higher priority.
Now I'm able to reach the internet key with his static ip address but also connecting to internet because the default interface is the wifi.
Bye
Andrea

Capturing the beginning of a WIFI conversation

I'm new to routers and networking so sorry for the maybe obvious question.
When I access my home router through WIFI from my laptop, the WIFI password is being sent from my computer through the WIFI card to router, followd by a response from the router.
Is it possible to use Wireshark or some other application in order to capture these packets (the packets that contains the actual encrypted password and the router response whether it is the correct password or not)?
Thank you.
Yes, you can do that using Wireshark.
Note that the password is sent by an IEEE802.11 management packet and you need to turn on monitor mode to sniffer it.
Please refer to:
https://wiki.wireshark.org/CaptureSetup/WLAN#Turning_on_monitor_mode
https://www.acrylicwifi.com/en/blog/how-to-capture-wifi-traffic-using-wireshark-on-windows/
https://www.riverbed.com/products/steelcentral/steelcentral-riverbed-airpcap.html

Sniff local network iOS game host

I am having a little issue right here.
I want to sniff an iOS game that makes an ad-hoc connection to another iOS device using the local network to get multiplayer, but I am unable to sniff these packets, I've tried with Wireshark but no luck (I think I am doing it wrong).
What can I do to intercept the connection between these two devices?
If it's on a WPA network, I think you need to do the sniffing on the AP. Alternatively, put all three devices on an ad-hoc WEP network.
There's also peer-to-peer bluetooth. I'd avoid that by turning it off, instead of trying to sniff a bluetooth key exchange.

How do I communicate between devices connected to a WiFi Access Point?

I have got a couple of phones and another couple of PC's connected to a Wifi access point and need to send and receive messages between either of these, I mean anyone can send a message to anyone and receive a message from anyone.
I am willing to write apps on the phones(Symbian OS, S60 platform) or PC(Windows), but what I can't understand is how do I set up a client or server, since any one of these devices could be a client or server.
If I use sockets do I have to script for ServerSockets and also Sockets on each of these devices? Can I use the HTTP protocol?
Alternatively any standard protocol that I could use to implement this?
You would broadcast UDP packets which would arrive at every device on the Wifi network. You would have to invent your own protocol to decide on the identity of each device, since you wouldn't be able to easily infer the IP addresses of your network devices. Without writing an election algorithm you would find it difficult to use a client/server architecture, so just use point-to-point (P2P).
Google for UDP broadcasts and read the relevant RFCs at ietf.org.
It seems like you're looking for pretty typical peer-to-peer communication over IP. I suppose other requirements will dictate which transport you use (HTTP, raw sockets, etc), but yes: Each node will be both a client and a server. You could possibly use MDNS (http://www.multicastdns.org/) to help the nodes find eachother in an ad-hoc manner.

Which connection class type should we use when connecting to a server to stream an audio file?

I need to connect to a server where resides an mp3 file and stream it. If I am not using rtsp connection what do u suggest me to use? Can we use rstp in this case?
Is it fine to use a http connection? I used that but it seems to take a long time to actually connect to that server. Can I improve the performance by using any other connection class?
Thanks
HTTP over Wi-Fi, Direct TCP, or WAP2 is the best connection method to use for streaming audio if you want to reduce the number of intermediate proxies and carrier networks. Transports such as BES and BIS go through third-party infrastructure (enterprise in the base of BES and RIM in the base of BIS), which adds another point of failure in the path. Not only that, but I have asked RIM employees directly what their thoughts were on streaming media over BIS and their short but sweet response is "don't". They don't want the extra traffic going over their network. I have heard from the BlackBerry forums that large HTTP transfers aren't very reliable over BIS, anyways. In a similar way, BES admins probably don't like apps that try to stream a lot of media through their servers as well.
That leaves Wi-Fi, WAP2 and Direct TCP. Wi-Fi is a no-brainer for devices that have it (and users who are connected) but remember most CDMA devices don't have Wi-Fi so only a small percentage of users may have it. WAP2 is nice in that it doesn't require manual "APN" configuration, however in my experience not all carriers are set up for WAP2. So you may want to try that first and if it doesn't work (i.e. no WAP2 service records or connections over WAP2 fail), use Direct TCP.

Resources