Windows
Promiscuous mode
- WinPcap supports promiscuous mode but drivers for Wi-Fi NICs usually don't => Wireshark using WinPcap can't capture packets from Wi-Fi NIC in promiscuous mode on Windows
Monitor mode
- WinPcap does not support monitor mode => Wireshark using WinPcap can't capture packets from Wi-Fi NIC in monitor mode on Windows
- Acrylic NDIS driver supports monitor mode => Wireshark + AirPcap/WiFi USB card +Acrylic NDIS driver is able to capture packets in monitor mode
Linux
Promiscuous mode
- libpcap supports promiscuous mode => Wireshark can capture packets from Wi-Fi NIC in promiscuous mode on Unix
Monitor mode
- libpcap supports monitor mode (on some flavors on Unix) => Wireshark can capture packets from Wi-Fi NIC in monitor mode on Unix
How to capture WiFi traffic using Wireshark on Windows
http://sourceforge.net/projects/libpcap/
http://www.tcpdump.org/
No comments:
Post a Comment