This is a static archive of our old Q&A Site. Please post any new questions and answers at ask.wireshark.org.

Capture my wireless (iPhone & iPad) traffic

0

I captured some iphone packets using shark for root on my android, is there a way to decrypt the messages using wireshark? Thanks.

asked 05 Feb '14, 03:10

Hozz's gravatar image

Hozz
11112
accept rate: 0%


One Answer:

0

is there a way to decrypt the messages using wireshark?

If you really mean to decrypt wifi traffic, please see the WLAN decryption wiki.

http://wiki.wireshark.org/HowToDecrypt802.11

If 'decrypt' just means 'decode/dissect', then simply open the capture file in Wireshark.

Regards
Kurt

answered 05 Feb '14, 05:20

Kurt%20Knochner's gravatar image

Kurt Knochner ♦
24.8k1039237
accept rate: 15%

edited 05 Feb '14, 05:25

It's wi-fi traffic decryption. I used my android as a wi-fi modem, then connected the iphone in my android's wi-fi, and used the shark for root to get the data. I can use wlan decryption or there's another one?

Thanks, sorry about my poor english. =D

(05 Feb '14, 05:40) Hozz

I can use wlan decryption or there's another one?

Yes, see my link above. You need the WPA password (or WEP key) and you must ensure that the four EAPOL frames (for WPA) are included in the capture file. However, that's all explained in the Wiki (link above).

(05 Feb '14, 06:11) Kurt Knochner ♦