Wireshark-users: Re: [Wireshark-users] Unable to decode WPA2/AES traffic with known Key/SSID
: Gerald Combs <gerald@xxxxxxxxxxxxx
: Tue, 15 Sep 2009 15:20:02 -0700
Stefan HORA wrote:
> I am unable to decode WPA2/AES traffic with known Key/SSID which i captured with airpcap 4.1
> I tried also the settings/sample file from http://wiki.wireshark.org/HowToDecrypt802.11 but the data in the example doesn't become readable.
> (Or how can i check if decryption works with the sample file ??)
> I am using Wireshark 1.2.1 and configured the key1 via wireless toolbar with Induction as key and Coherer as SSID ("wpa-pwd:Induction:Coherer") using the sample file SampleCaptures/wpa-Induction.pcap.
> Decryption mode is "wireshark" and decryption is enabled. No Filters are active.
> Any ideas what else to check ?
You might try Wireshark 1.2.2. It fixes a known WPA decryption bug.