This is our old Q&A Site. Please post any new questions and answers at ask.wireshark.org.

I captured some iphone packets using shark for root on my android, is there a way to decrypt the messages using wireshark? Thanks.

asked 05 Feb '14, 03:10

Hozz's gravatar image

Hozz
11112
accept rate: 0%


is there a way to decrypt the messages using wireshark?

If you really mean to decrypt wifi traffic, please see the WLAN decryption wiki.

http://wiki.wireshark.org/HowToDecrypt802.11

If 'decrypt' just means 'decode/dissect', then simply open the capture file in Wireshark.

Regards
Kurt

permanent link

answered 05 Feb '14, 05:20

Kurt%20Knochner's gravatar image

Kurt Knochner ♦
24.8k1039237
accept rate: 15%

edited 05 Feb '14, 05:25

It's wi-fi traffic decryption. I used my android as a wi-fi modem, then connected the iphone in my android's wi-fi, and used the shark for root to get the data. I can use wlan decryption or there's another one?

Thanks, sorry about my poor english. =D

(05 Feb '14, 05:40) Hozz

I can use wlan decryption or there's another one?

Yes, see my link above. You need the WPA password (or WEP key) and you must ensure that the four EAPOL frames (for WPA) are included in the capture file. However, that's all explained in the Wiki (link above).

(05 Feb '14, 06:11) Kurt Knochner ♦
Your answer
toggle preview

Follow this question

By Email:

Once you sign in you will be able to subscribe for any updates here

By RSS:

Answers

Answers and Comments

Markdown Basics

  • *italic* or _italic_
  • **bold** or __bold__
  • link:[text](http://url.com/ "title")
  • image?![alt text](/path/img.jpg "title")
  • numbered list: 1. Foo 2. Bar
  • to add a line break simply add two spaces to where you would like the new line to be.
  • basic HTML tags are also supported

Question tags:

×26
×14
×9
×1

question asked: 05 Feb '14, 03:10

question was seen: 4,641 times

last updated: 05 Feb '14, 06:18

p​o​w​e​r​e​d by O​S​Q​A