Sign up to save your podcasts
Or
Share CTS 102: Capturing Wireless Frames
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
CTS 102: Capturing Wireless Frames
François and Rowell discuss their experiences capturing wireless frames for analysis and what tools they used to do it.
This episode is sponsored by Metageek
Capturing Wireless Frames
It’s one of my favorite things to do. Capture wireless frames anywhere there’s a wireless network present. I know. I’m a boring guy. But I can’t help taking a look. In this episode on capturing wireless frames, we go over our favorite tools and apps which help us solve real world problems.
Why should you capture frames? If you want to learn how wireless works, then you need to start diving into frames. That’s how you’ll learn exactly what you need to know by seeing how it works. It’s perfect for learning any of the CWNP certifications and especially for the CWAP. By looking at wireless frames, you’ll begin seeing how wireless devices and access points talk to each other and acquire the shared medium.
Another reason for capturing wireless frames is to perform analysis. There may be an issue that’s hard to solve and requires wireless frame analysis. This could be as simple as finding out a device does not negotiate the same parameters as the BSS. Or maybe you’re trying to find out what could be slowing down wireless for every other device.
It’s the old saying, packets never lie. But in this case, frames never lie!
You can capture wireless frames on any platform such as MacOS, Windows, and Linux. When it comes to the platform of choice, we prefer to use MacOS. By default, you can place the MacOS wireless adapter in promiscuous mode. This mode is used to capture all frames, even those not destined to the host. By utilizing an app such as Airtool, it’s possible to fine tune a frame capture down to parameters such as the channel, channel width, payload or no payload, etc.
Then with Wireshark, the analysis can be performed.
In the episode, François and I speak about our experiences in using frame analysis. I bring up a situation where Skype calls kept dropping but the issue was really a consumer level device trying to take up most of the airtime. There are other examples also described in the episode.
Here are some screenshots of different applications of frame capture and analysis.
Links and Resources
* What are radiotap headers
* Windows Network Monitor 3.4
* Eye P.A. Coloring Rules
* Mojo Packets
* Airtool
* Wireshark
* Omnipeek
* AirPcap NX
View all episodes
By Rowell Dionicio and François Vergès
4.8
6464 ratings
François and Rowell discuss their experiences capturing wireless frames for analysis and what tools they used to do it.
This episode is sponsored by Metageek
Capturing Wireless Frames
It’s one of my favorite things to do. Capture wireless frames anywhere there’s a wireless network present. I know. I’m a boring guy. But I can’t help taking a look. In this episode on capturing wireless frames, we go over our favorite tools and apps which help us solve real world problems.
Why should you capture frames? If you want to learn how wireless works, then you need to start diving into frames. That’s how you’ll learn exactly what you need to know by seeing how it works. It’s perfect for learning any of the CWNP certifications and especially for the CWAP. By looking at wireless frames, you’ll begin seeing how wireless devices and access points talk to each other and acquire the shared medium.
Another reason for capturing wireless frames is to perform analysis. There may be an issue that’s hard to solve and requires wireless frame analysis. This could be as simple as finding out a device does not negotiate the same parameters as the BSS. Or maybe you’re trying to find out what could be slowing down wireless for every other device.
It’s the old saying, packets never lie. But in this case, frames never lie!
You can capture wireless frames on any platform such as MacOS, Windows, and Linux. When it comes to the platform of choice, we prefer to use MacOS. By default, you can place the MacOS wireless adapter in promiscuous mode. This mode is used to capture all frames, even those not destined to the host. By utilizing an app such as Airtool, it’s possible to fine tune a frame capture down to parameters such as the channel, channel width, payload or no payload, etc.
Then with Wireshark, the analysis can be performed.
In the episode, François and I speak about our experiences in using frame analysis. I bring up a situation where Skype calls kept dropping but the issue was really a consumer level device trying to take up most of the airtime. There are other examples also described in the episode.
Here are some screenshots of different applications of frame capture and analysis.
Links and Resources
* What are radiotap headers
* Windows Network Monitor 3.4
* Eye P.A. Coloring Rules
* Mojo Packets
* Airtool
* Wireshark
* Omnipeek
* AirPcap NX
More shows like Clear To Send: Wireless Network Engineering
View all
The Joe Rogan Experience
228,856 Listeners
The Everything Feed - All Packet Pushers Pods
195 Listeners
Heavy Networking
327 Listeners
Risky Business
371 Listeners
Network Break
101 Listeners
Darknet Diaries
8,062 Listeners
IPv6 Buzz
33 Listeners
The Hedge
16 Listeners
Bad Friends
14,513 Listeners
The Art of Network Engineering
85 Listeners
The Rest Is History
15,526 Listeners
The Why Files: Operation Podcast
8,115 Listeners
Heavy Wireless
11 Listeners
Packet Protector
7 Listeners
N Is For Networking
21 Listeners