Huge thanks to our Platinum Members Endace and LiveAction,
and our Silver Member Veeam, for supporting the Wireshark Foundation and project.

Wireshark-users: Re: [Wireshark-users] Wireshark-users Digest, Vol 39, Issue 21

From: Gail <empr3ss@xxxxxxxxx>
Date: Wed, 12 Aug 2009 15:02:25 -0400
Hi,

My SSID is hidden.  But I entered it in the Preferences as shown (and what it actually is).

The packets still do not look decrypted to me.

Do you know if the SSID must be "visible" to be able to be decrypted in this manner?

Thanks,
GLR



Message: 2
Date: Wed, 12 Aug 2009 10:20:20 -0400
From: Frank Barta <fbarta@xxxxxxxxx>
Subject: Re: [Wireshark-users] Monitoring all traffic on a secure
       wireless        network with a Mac
To: Community support list for Wireshark
       <wireshark-users@xxxxxxxxxxxxx>

Gail,

I would recommend taking a look at this entry on the Wireshark Wiki:
http://wiki.wireshark.org/HowToDecrypt802.11

- Frank

On Wed, Aug 12, 2009 at 10:05 AM, Gail <empr3ss@xxxxxxxxx> wrote:

> Hi all,
>
> I downloaded Wireshark, and when I sniffed my network, it only gave me
> packets going to and from my computer.  I read somewhere that perhaps I
> could use Kismac to do a Dump of all traffic on my network and then analyze
> it with Wireshark.
>
> The problem is my network has a hidden SSID and password.... so I have to
> capture everything as encrypted.   But I know all that information (the SSID
> and password since it's my network)... but I don't see anywhere I can
> decrypt the dump in Wireshark so that I can inspect the packets and look at
> web usage, etc.
>
> Does anyone have a recommendation on how to do this.. I just want to set up
> a wireless client that will passively monitor everything on my secure
> network and that I can make sure that no one is misusing my network later.
> Whether I use Kismac or not doesn't matter... but I would like to use OSX
> (either Tiger or Leopard).
>
> Thanks very much,
> Gail
>