Network Engineering Asked by DJay on September 30, 2021
I have been trying to analyze packets using tcpdump. I am trying to use a wireless card and capture packets through monitor mode, instead of promiscuous mode, since I want to see what kind of traffic can an outsider see, without connecting to the network.
Now, here is where my problem starts.
So, I was wondering :
I have tried looking up various things but I could not find any resources. I will be glad to receive any kind of direction, does not have to be the full solution.
Note: I tried capturing through airmong, and it showed me many more packets as well, but I am trying to capture only through tcpdump, so I am curious.
Also, I am not able to share any output, since the capture is being done on two different machines
It looks like both monitor and promiscuous modes of tcpdump should get you a lot of traffic:
https://en.wikipedia.org/wiki/Monitor_mode#:~:text=Monitor%20mode%2C%20or%20RFMON%20(Radio,received%20on%20a%20wireless%20channel.&text=Monitor%20mode%20only%20applies%20to,both%20wired%20and%20wireless%20networks.
https://en.wikipedia.org/wiki/Promiscuous_mode
If you are seeing more traffic with Omnipeek must something from this list:
Correct answer by user2821413 on September 30, 2021
Get help from others!
Recent Questions
Recent Answers
© 2024 TransWikia.com. All rights reserved. Sites we Love: PCI Database, UKBizDB, Menu Kuliner, Sharing RPP