Wireshark · Wireshark-users: Re: [Wireshark-users] Unable to decode WPA2/AES traffic with known Key/SSID

Wireshark-users: Re: [Wireshark-users] Unable to decode WPA2/AES traffic with known Key/SSID

From: Gerald Combs <gerald@xxxxxxxxxxxxx>

Date: Tue, 15 Sep 2009 15:20:02 -0700

Stefan HORA wrote:
> I am unable to decode WPA2/AES traffic with known Key/SSID which i captured with airpcap 4.1
> 
> I tried also the settings/sample file from http://wiki.wireshark.org/HowToDecrypt802.11 but the data in the example doesn't become readable.
> (Or how can i check if decryption works with the sample file ??)
> 
> I am using Wireshark 1.2.1 and configured the key1 via wireless toolbar with Induction as key and Coherer as SSID ("wpa-pwd:Induction:Coherer") using the sample file SampleCaptures/wpa-Induction.pcap.
> 
> Decryption mode is "wireshark" and decryption is enabled. No Filters are active.
> 
> Any ideas what else to check ?

You might try Wireshark 1.2.2. It fixes a known WPA decryption bug.

References:
- [Wireshark-users] Unable to decode WPA2/AES traffic with known Key/SSID
  - From: Stefan HORA

Prev by Date: [Wireshark-users] Unable to decode WPA2/AES traffic with known Key/SSID
Next by Date: Re: [Wireshark-users] Unable to decode WPA2/AES traffic with known Key/SSID
Previous by thread: [Wireshark-users] Unable to decode WPA2/AES traffic with known Key/SSID
Next by thread: Re: [Wireshark-users] Unable to decode WPA2/AES traffic with known Key/SSID
Index(es):
- Date
- Thread