Wireshark

  • Riverbed Technology
  • WinPcap
SHARKFEST '13 - Wireshark Developer and User Conference - June 16-19, 2013 - UC Berkeley
  • Wireshark
    • About
    • Download
    • Blog
  • Get Help
    • Ask a Question
    • FAQs
    • Documentation
    • Mailing Lists
    • Online Tools
    • Wiki
    • Bug Tracker
  • Develop
    • Get Involved
    • Developer's Guide
    • Browse the Code
    • Latest Builds

Wireshark-users: Re: [Wireshark-users] Unable to decode WPA2/AES traffic with known Key/SSID

Date Index Thread Index Other Months All Mailing Lists
Date Prev Date Next Thread Prev Thread Next


From: Gerald Combs <gerald@xxxxxxxxxxxxx>
Date: Tue, 15 Sep 2009 15:20:02 -0700

Stefan HORA wrote:
> I am unable to decode WPA2/AES traffic with known Key/SSID which i captured with airpcap 4.1
> 
> I tried also the settings/sample file from http://wiki.wireshark.org/HowToDecrypt802.11 but the data in the example doesn't become readable.
> (Or how can i check if decryption works with the sample file ??)
> 
> I am using Wireshark 1.2.1 and configured the key1 via wireless toolbar with Induction as key and Coherer as SSID ("wpa-pwd:Induction:Coherer") using the sample file SampleCaptures/wpa-Induction.pcap.
> 
> Decryption mode is "wireshark" and decryption is enabled. No Filters are active.
> 
> Any ideas what else to check ?

You might try Wireshark 1.2.2. It fixes a known WPA decryption bug.
  • References:
    • [Wireshark-users] Unable to decode WPA2/AES traffic with known Key/SSID
      • From: Stefan HORA
  • Prev by Date: [Wireshark-users] Unable to decode WPA2/AES traffic with known Key/SSID
  • Next by Date: Re: [Wireshark-users] Unable to decode WPA2/AES traffic with known Key/SSID
  • Previous by thread: [Wireshark-users] Unable to decode WPA2/AES traffic with known Key/SSID
  • Next by thread: Re: [Wireshark-users] Unable to decode WPA2/AES traffic with known Key/SSID
  • Index(es):
    • Date
    • Thread

Wireshark and the "fin" logo are registered trademarks of the Wireshark Foundation