wireshark vs wireshark wifi?

**Lordofdark176** · 07-05-2007, 04:00 AM

whats the difference between these 2 programs? they appear to be the same program.

also does packet sniffing need to be done in monitor mode, or does it just have to be promiscuous mode, or both??

**streaker69** · 07-05-2007, 04:11 AM

Originally Posted by Lordofdark176

whats the difference between these 2 programs? they appear to be the same program.

also does packet sniffing need to be done in monitor mode, or does it just have to be promiscuous mode, or both??

You might want to look up the difference between monitor mode and promiscuous mode. In doing that, your answer you shall find.

**Lordofdark176** · 07-05-2007, 04:27 AM

i just looked it up, from what i got was that in monitor mode you can capture packets without being associated with an access point, in promiscuous mode you have to be associated with the access point in order to capture packets from it, and correct me if im wrong but both promiscuous and monitor mode capture all packets even if they aren't directed at the network device.

I still dont get the difference between wireshark and wireshark wifi, i looked at the menu shortcuts and i guess that wireshark wifi starts in monitor mode for packet injection? is this correct?

so in order to capture packets successfully using say kismet, i need to be in both promiscuous and monitor mode?

**balding_parrot** · 07-05-2007, 04:34 AM

I would say that just a quick look at the tools section of the wiki and it becomes obvious what the difference is.

Wireshark

Wireshark is a GUI network protocol analyzer. It lets you interactively browse packet data from a live network or from a previously saved capture file. Wireshark's native capture file format is libpcap format, which is also the format used by tcp- dump and various other tools.

Wireshark Wifi

Wireshark with Wifi Injection Patch allows the user to select a packet opened with wireshark and edit it and reinject throught LORCON injection library.

**Lordofdark176** · 07-05-2007, 05:13 AM

so........

so in order to capture packets successfully using say kismet, i need to be in both promiscuous and monitor mode?

**theprez98** · 07-05-2007, 05:45 AM

Originally Posted by balding_parrot

I would say that just a quick look at the tools section of the wiki and it becomes obvious what the difference is.

Now if we could only teach that to the noobs.

**theprez98** · 07-05-2007, 05:47 AM

Originally Posted by Lordofdark176

I still dont get the difference between wireshark and wireshark wifi, i looked at the menu shortcuts and i guess that wireshark wifi starts in monitor mode for packet injection? is this correct?

Read the wiki. It's all explained there.

Originally Posted by Lordofdark176

so in order to capture packets successfully using say kismet, i need to be in both promiscuous and monitor mode?

Find a dictionary, or use Google.

Question asked and answered, more than once.

Thread closed.

BackTrack Linux - Penetration Testing Distribution

Thread: wireshark vs wireshark wifi?

Thread Tools

Search Thread

Display

wireshark vs wireshark wifi?

Posting Permissions