📙
WLAN Pi Cookbook
2022 Pi Pro (legacy)
2022 Pi Pro (legacy)
  • 😎Getting Started
    • WLAN Pi Pro
    • 🔼FPMS
    • 💻USB (OTG)
    • 🕸️WebUI
    • 🧑‍✈️Cockpit
      • Terminal
      • tmux
    • 🔵Bluetooth
    • 🥅Ethernet
    • 📶Wi-Fi
    • 🌎Remote Access
  • 🤓Packet Capture
    • ⚙️Setup Instructions
      • 🪟Windows
        • 1️⃣ Python
        • 2️⃣ Wireshark (Win)
      • 🍏macOS
        • 1️⃣ Wireshark (Mac)
        • 2️⃣ Airtool 2
      • 📱iOS (bonus)
    • 1️⃣ Sniff some Wi-Fi
    • 2️⃣ Sniff some 6 GHz Wi-Fi
    • 🦈Wireshark Resources
    • Bonus - Passwordless
  • 🔍Profiler
  • 🔦Wi-Fi Scanner Sensor
    • 🪟WiFi Scanner(Win)
    • 🍏Wi-Fi Explorer Pro(macOS)
    • Mini Wi-Fi Scanner
  • 🚨Kismet
    • 1️⃣ Start Kismet
    • 2️⃣ Wi-Fi Sniffing
    • 3️⃣ Bluetooth Sniffing
  • 📱Tether
  • 📡Hotspot Mode
  • 🖥️Server Mode
    • 1️⃣ Radius Server
    • 2️⃣ Wi-Fi with 802.1X
    • 3️⃣ DHCP Server
  • 🔧Wi-Fi Console Mode
  • 🚀Network Performance
    • Librespeed
    • Ookla Speedtest Client
    • iPerf3
  • 📶Wi-Fi 6E Client
Powered by GitBook
On this page
  • Step 1 - Download & Install
  • Step 2 - wlan-extcap
  • Step 3 - Wireshark
  • Step 4 - Remote Wi-Fi Capture

Was this helpful?

Export as PDF
  1. Packet Capture
  2. Setup Instructions
  3. Windows

2️⃣ Wireshark (Win)

Previous1️⃣ PythonNextmacOS

Last updated 7 months ago

Was this helpful?

Even if you already have Wireshark installed! We need to reinstall it with a critical (non-default) checkbox checked

Step 1 - Download & Install

From the 'Choose Components' screen Expand Tools Select 'Ssh dump & Ciscodump' checkbox

This option enables remote packet capture via SSH

All other options can (& should) be left as default

Step 2 - wlan-extcap

  1. Download wlandump.zip and extract the contents onto your desktop

  2. Move both wlandump files into folder C:\Program Files\Wireshark\extcap

Step 3 - Wireshark

  1. Open Wireshark

  2. You should see 'Wi-Fi remote capture' in the list of available interfaces

Step 4 - Remote Wi-Fi Capture

The wifidump capture interface allows you to perform remote Wi-Fi packet captures on a specified channel and channel width using a Linux device with a compatible Wi-Fi adapter (one that can be put into monitor mode).

Click the gear icon next to "Wi-Fi remote capture" to display the interface options, then choose the interface name, channel, and channel width you want to capture on​

All 802.11 channels are listed, however, the Wi-Fi adapter on the WLAN Pi device may support only a subset of them. If you choose a channel that is not supported by the Wi-Fi adapter or a channel width that doesn't apply to the selected channel, the capture will fail.

Go to the Server tab and enter the remote SSH server address With an OTG connection to the WLAN Pi 169.254.42.1

Go to the Authentication tab and enter the username and password​

The password is not saved, this means every time you stop and start a new capture you will have to re-enter your password.

This hassle can be avoided by configuring passwordless SSH authentication to the WLAN Pi (we are not going to cover this here and now)

Click the Start button to begin capturing frames​

For wlan-extcap source and additional information go to GitHub:

OTG connection IP address, port can remain at default value of 22
Enter the credentials you have configured for your WLAN Pi
...And you are away
🤓
⚙️
🪟
https://github.com/adriangranados/wlan-extcap
4KB
wlandump.zip
archive
Download this file
Select 'Ssh dump & Ciscodump' checkbox
wlan-extcap installation was successful
target wlan0 as the interface for performing the capture
Wireshark · Download
Click link, download and install!
Logo