View Smartphone Traffic with Wireshark on the Same Network [Tutorial]
Вставка
- Опубліковано 5 гру 2019
- Earn $$. Learn What You Need to Get Certified (90% Off): nulb.app/cwlshop
How to Use Wireshark to See Phone Traffic
Full Tutorial: nulb.app/z4m2t
Subscribe to Null Byte: goo.gl/J6wEnH
Kody's Twitter: / kodykinzie
Cyber Weapons Lab, Episode 131
Ever wonder what someone across the room is doing on their phone? With Wireshark, a pentester, white hat hacker, etc. can analyze the packets flowing through a network and provide an alarming amount of information about a target. We'll show you how to spy on network traffic, on this episode of Cyber Weapons Lab.
To learn more, check out the article: nulb.app/z4m2t
Follow Null Byte on:
Twitter: / nullbyte
Flipboard: flip.it/3.Gf_0
Website: null-byte.com
Weekly newsletter: eepurl.com/dE3Ovb
Vimeo: vimeo.com/channels/nullbyte - Навчання та стиль
When he said “whole lotta google...” my RAM felt that.
I want to build a PC with 64gb of ram just so I can use chrome...
@@NullByteWHT 😂😂😂😂👍
it shows dns request only from my traffic. im in monitor mode and not connected to the network.
@@NullByteWHT there tool script call snow whithe red blood what do u know about . languge is basic and jocey
Other tool script is :The Years of Extermination .
Rply
@@NullByteWHT google is spying on you
Never tapped on a video so fast!
Love the video! I'm almost 2 years into studying cyber security / penetration testing and find that you learn new things constantly!! Look forward to more videos.
Jeremiah Dean thanks for watching! Tell all of your friends about us! 😃
i have been penetration testing for about 30 years, id say im way more advanced that you at this point lol. dont know sh't about computer stuff tho
@@mrbrittas2243 Ayo
Great video. Well done. Easy to understand , to the point, and very informative. Thank you for putting this together for everyone .
bro i always take courses on similar subjects but you my friend have the ability to explain what took them days to teach in a matter of minutes thank you and keep up
I will! Thank you for watching
Seriously if you are not a teacher you should possibly start charging for your services I would definitely pay for a face to face comprehensive class once a week or so.
Just subbed, As a network engineer I'm learning things I have never heard of. Respect
C List thanks for watching I'm glad we're able to teach you some stuff! Tell all of your friends about us and let us know if you have any good video ideas! 😃
Finally waited for this video for a long time
This is such an amazing UA-cam channel. You really do a great job. I’m so glad I stumbled upon this channel.
Thank you for watching it!
there is no traffic under eapol when i run the filter, although i know im connected on my phone...?
same
same
you make the best videos and tutorials, thanks!
Thanks for watching, I appreciate it!
Thanks for all the amazing videos. I love your style of demonstrations and teaching. You’re one of my favorite youtubers.
Thanks LaRon Lumpkin! We really do put in a lot of hard work.
Apple user
Great content! Clear and straight to the point.
hi! why i can't see the traffic from my android mobile? i set adapter in the same channel but i see only the traffic on my laptop (running kali in a VM) why?
Fascinating. I just started a degree in Cyber security, this will help me understand
Does it pay good do you need to know about computers to have a career in cybersecurity
@@illdrumatik391 The pay is really good, and yes you need understanding of computers & networks. You can gain all information needed online though through personal research - but it's always a + to have the certifications behind it.
Thanks for the info. I used this in debugging some issues with an app I am working on. Greatly appreciated.
Great tutorials, keep up the good work!
Quality content!
Great way of controlling own device traffic, I guess it's for any WiFi device, not only for cellphones
Thanks for the video. Might be useful to write some of the commands in the description.
Interesting content. Thanks for the information. What sort of Android and Windows VPN one can use to be more secure?
huh this is weird. all of my female friends are suddenly interested in hacking
installing kali linux and running root isnt hacking................ DOWNLOAD THE LINUX BIBLE ,,, GET A debian distro or linux mint.......... start learning bash scripting and get the command line bible.... once u know what curl means or why you dont run this in terminal :(){ :|: & };: you learned something
@@JohnSmith-vi6wu why the fuck do you have to be such an asshole? I bet you know nothing other than the two things you mentioned. Start motivating others..not taking away any hope they have.
what about your gay friends?
John Smith dude... it was a joke
@@pranavbanerjee8625 he got a point
Great vid! I had a slight doubt to clarify tho, what is the logic behind generating a psk? would be great if you or anyone could elaborate on it! just want to understand better as I'm just starting out is all :)
The psk is part of an algorithm that is used to encrypt and decrypt data sent through a secure wireless network. Without knowing the psk, decryption would require a brute force method (which would be extremely difficult). As WEP was relatively easy to decrypt, it fell out of favor for WPA2/PSK instead. Packets that are sent use the psk to encrypt the data. Packets are received use the same psk to decrypt the data so the information can be read. Plugging the psk into Wireshark, allows wireshark the ability to decrypt the data it intercepts.
Hey dude I'm still a beginner I been watching your videos for a while.... always really helpful 🙂 thought I'd mention this.... you probably already know, there's a few of your videos including this one that someone else is using as there own.... changed your voice edited you out of it and put there own name on it...... im sure it won't be difficult for you to find them haha
Very informative
thank and keep up the good work.
What if eapol does not catch anything, although I've already reconnected to WIFI from the phone several times, having wireshark running at this period?
exactly! it doesn't detect anything
its probably because you are using ethernet on your pc, and not a wifi adapter
When I use eapol, newly connected devices are not showing up. I think that this might be because I am not in monitoring mode (if that is a thing. Or if it is because I do not have an external network adaptor? I am not sure why I am experiencing this problem, I would be grateful for any help. I am on a macOS Catilina.
Same
same
I love your intro video :-)))))) Excellent content 🙂
I'm having trouble putting my NIC into monitor mode (in the Wireshark GUI) on macOS 11 (Big Sur). It picks up no traffic at all, not even encrypted. Works fine on my 10.40 (Mojave) laptop. Did Apple do some tweaking here?
Im on windowss 8 laptop.. When I put in the EAPOL filter, I go to my device and I connect to the network but I dont see any displayed packets :/
Your card needs to be in wireless monitor mode
@@neilcage Thanks
Does this still work? Because I gave it a tried and was not able to get any DNS packets listed.
same here
I have some question : how could i trace an application like Tango or viber. Thx
I love you Null Byte!!! You are a GOD!!!!!
I love ur intro
Thank you!
Supercool, thank you! I guess this doesn't work with WPA2 or WPA3?
It sure does, but you need a handshake
@@NullByteWHT Meaning forcing a handshake through a deauth or a series of deauths?
Can this be used to view traffic from a mobile app as well (Android)?
How to push ethernet device to broadcast it ip address ? I have some energy meter with eth but it doesn't broadcast it ip address. Is any ability to do it ?
You are the best you are master bro 😍
Thank you!
Null Byte absolutely amazing video can u explain what’s the difference between locked wps networks and unlocked wps wifi networks
If it's locked, then one can't brute Force the WPS pin . If it's unlocked then it can be accessed using WPS pin. However most of the routers lock temporarily after few unsuccessful pin attempts
Samarth R so how would I approach and execute the attack
@@yusuususwwwdpppdeew6780 If you are an Android user, you may try using an app named "WPS WPA tester" which has bunch of default WPS pins of various routers. If lucky then you can connect to the network. If you're using Linux, then use Reaver to attack WPS
@@54M4R7H Wow, you should write articles.
Hello... First thing I need to say Thank you.. you provide very useful information.. Now I need to comment a problem when I start command using eapol it dose not show anything .. also when I start listening it shows many IP addresses ... I know ho many users are connected to that device also My cell is connected there so I can check but there is only single IP show in window that is mine PC.. hope you get the problem I face. Thank you
Hi, this is really cool, but how do I look at the stuff on my phone? It isnt even appearing on the list by the looks of it
What kind of phone is this when I try it I see nothing under EAPoL
me too
Me too
Nothing appear when I type eapol
Pls help ty
Me too
At 1:58 you mentioned “getting phone calls”. Actually, it would only be possible getting Voice over Wi-Fi calls. Also a VoIP call such as FaceTime or even Skype, but not the content at all. By the way, Cellular calls over the Carrier Network would not be possible at this way.
True
You could also in theory listen to phone calls with an rtlsdr over ism if it uses 2g
True, but also false. Wifi calling can be enabled on some devices.
What if your doing this on an open network? Do you will need a PSK?
can using wifi repeater make you safe
instead of connecting that router directly ?
When you see what webpage his is logged into and starts coughing :D nice video :)
Great video! Thanks!
But when i run Eapol it shows nothing even if I reconnect my devices, but it would show nothing each time, although i tried to do some traffic.
Any help?
Same here
same here
Hi I watch your videos all the time! Thank you! Can you tell me how a device can be hidden on my network? I’m watching the person on the phone all the time, yet the op address assigned to them is not showing up in traffic…
but when i turn Monitor mode on my linux ,i cant able to connect to wifi ,i can do just things like data capturing or scanning :(
I may be wrong (I still have a lot to learn) but I'm pretty sure that is working as intended, and that monitor mode prevents a regular wifi connection
@@_underscore_9271 Okay
there needs to be a community of people on defense and prevention, this is sad how people can hack this shit out of others for no reason
How would you put an ALFA AWUS036NHA network adapter into monitor mode on windows 10?
can somehow find the phone number connected to a specific ip? or just call them only knowing their ip ?
First of all big fan and subscriber
Now, can you tell us something about Kali nethunter project and how to install it on any android
buddy dont install nethunter...... u dont even know the basics of running curl or using vim ..... start by downloading a virtual machine with crunchbang or debian .... the start reading linux administration bible and then get to learning bash scripting... kali and nethunter isnt for you and i will legit rape u android while u foolishly run ur kali in root. start in a virtual machine , get a debian os and download linux bible and learn bash scripting... from there if u dont lose interest txt me.
@@JohnSmith-vi6wu daamn, dude, how can you expect somebody to text you when you literally just assumed their knowledge of linux is = 0. it may be insulting to the person or this person you've just commented to maybe is smarter than you and just asking Null Byte to teach newbies to install nethunter, but anyway, this is none of my business. all i wanted to say, was that you don't know anything about that person. yeah.
I cant capture eapol on same network why this happen i connect my phone but nothing show any captured on wireshark
Me too
Yes true. Can anyone help?
@@BrajeshKedia has to be in monitoring mode, most computers wont run it.
I have often monitored traffic on my home LAN. However, I did it by using port mirroring on my managed switch, to capture the traffic going to/from my access point.
MacOS no longer enters monitoring mode automatically, do you have a video on this?
Oh great now I'm on a watchlist.
It's ok I'm pretty dumb at this
Might as well go all the way
@@NullByteWHT no way, I'm not ready for prison. But I love learning new stuff; so keep teaching. Lol
How is this different/better from sniffing traffic while doing man in the middle?
Quieter?
@@undersky596 I'll give you that, but really who's gonna notice you doing mitm to a mobile device? Doesn't seem like an appealing/realistic use case.
@@Anthony-kj3xw agreed
@@undersky596 no wireshark needs to have the attacker poison the routers ARP tables and then forward the traffic to sniff the packets .. this is too advanced for you... please learn simple basics BASH SCRIPTING LINUX BASICS AND PYTHON CODE
1- Do I still need to use the WPA PSK generator if I'm monitoring over Ethernet?
2- If the wifi doesn't have a password, do i skip that step?
can i use commview for wifi software to capture
and lets say view internet web history ?
Why does he look like The Backyard Scientist?
Evil Twin!
Hay kody I am actually capturing packets without eapol filter
Jenny Patel how
@@mayank7499 idk
Hi can you share how we will know if the phone is connected, i can not see any if i type eapol
What if i make a access point(hotspot) from my phone that is unprotected, and make my host automatically join the network. Will the network monitor mode still work and intercept and read all data or there is something I'm missing.
(Please help, i started ethical hacking month and I'm just a begginer)
How can I prevent someone from doing this to me?
Just make sure you aren't using WPS and also keeping changing password more frequently
Use a VPN on the mobile device as mentioned in the video.
I do this with a packet capture from PFSense. There is so much garbage going out from my phone. I tried to learn everything that was going out so I could lock it down with Snort but it ended up breaking the phone updates etc.
ouch, I've always wanted to try doing that, but assumed it would break everything
@@NullByteWHT Yeah I'm sure if you studied the traffic long enough you could learn what is from your carrier that is going out to get updates and such and what is garbage from apps. As soon as you take it off your network and go back to cell it recovers, though. It just has to reach out and receive the update.
Thanks
Why is a NetworkCard in MonitorMode necessary? I should work the same way scanning the network for the device and start arp-spoofing
Think I'm doing something wrong, I see no eapol traffic when I try this on my wifi and I'm using an iPhone. May that's why?
imorti I’m getting the same issue
Ok so not just me. Thanks and Merry Christmas
Same
imorti i guess it won’t work for iOS. Try doing this with an android. iOS follows https so its hard to do it
Plz show off your browsers extensions
ua-cam.com/video/F3tJUNHbwnA/v-deo.html
Null Byte idk how to thank for that reply
@Null Byte What laptop are you using? Any laptop recommendations for Kali linux?
He uses a MacBook Pro but does not recommend it, look into the Dell XPS 13 developer edition
Congrats on 500k subs
THANKS!
using eapol as my filter, nothing showed, is there a reason why? Im on the same network as my phone im trying to track.
Me too, i’ve been trying for three days in raw and it seems this tutorial isn’t how it looks like, it’s waay too abbreviated and not really helpful.. im not sure who’s gonna find this helpful the noobs like me who had to go thru a lot of not mentioned steps or the pros who really don’t need to learn it since they probably know already all that, I suggest that he either do detailed tutorials or stop calling them tutorials at all bcs they’re not tutorials they’re just made to watch them like watching some tv show without an actual teaching process where u can deploy all that knowledge, im disappointed and i feel the title was just a clickbait bcs if i had to mention all the stuff i had to go thru that are basic knowledge and aren’t mentioned in his vid or blog this comment will never end, and the worst of it im still not done and haven’t reached a result yet so yah, fkn stupid.
Oooook, lets see. I'm trying to do the same thing on the video, with all detalles, but I dont get any EAPOL traffic on my network, even with 3 mobile phones connecting and disconnecting to it, so whats going on here? I dont get it.
Same issue here!
Where did you paste the key at the start just before you put your phone on.
could someone explain why when i filter out eaopl protocol and i connect my device to the same network...wireshark is still unable to capture the eaopl packets.(My network is already in wireless adapter mode).
654 likes
0 dislikes
*Good Job!*
@Shank Adams 😰
That guy will get here, he always gets here
@Shank Adams upload a video so I can downvote it
i only see my traffic, any help?
Same
what wireless network adapter should I use?
Idk if you are active or not but my query is how a smart phone can operate similar app like wireshark and can we put the wifi adaptor of Android (rooted) into monitor mode?
wireshark
more like
wirelessshark
░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░░
░░░░░░░░░░░▄▄█▀▀▀▀█▄▄░░░░░░░░░░░
░░░░░░░░░▄█▀░░░░░░░░▀█▄░░░░░░░░░
░░░░░░░░█▀░▄▄▄▄░░▄▄▄▄░▀█░░░░░░░░
░░░░░░░▄█▄▄▀▄▄▀▄▄▀▄▄▀▄▄█▄░░░░░░░
░░░░░░░████▄▀▀▄▀▀▄▀▀▄████░░░░░░░
░░░▄░▄░░█░░▀▀▀▀░░▀▀▀▀░░█░░▄░▄░░░
░░▄███▄░█░░░░▀█▀▀█▀░░░░█░▄███▄░░
░░░▀██░░█▄▄▄░░▀▀▀▀░░▄▄▄█░░██▀░░░
░░░░██░░█▀███▄░░░░▄███▀█░░██░░░░
░░░░██▄▄█░░░▀██████▀░░░█▄▄██░░░░
░░░░░▀▀▀█▄▄▄▄██▀▀██▄▄▄▄█▀▀▀░░░░░
░░░░░░░░██████░█▄░██████░░░░░░░░
░░░░░░░░███████▄▄███████░░░░░░░░
░░░░░░░░░░▄▄▄██░░██▄▄▄░░░░░░░░░░
░░░░░░░░░░█▄▄██░░██▄▄█░░░░░░░░░░
You nailed it
@@NullByteWHT thx
@@NullByteWHT how did u do that
For those of you who aren't aware, due to UA-cams new "no hacking video" policy, a lot of Null Bytes educational videos were removed from the platform (which were actually some of the best ones in my opinion). However, just because you can't find them here doesn't mean they are totally gone! You can actually still find them over on Bitchute @ --> --www.bitchute.com/channel/xeRnV2Dkjyie/--
Thank you for spreading the information. I knew UA-cam changed TOS but did not know it affected the channel as well. Conglomerates must cease to exist. Motherfuckers.
Hacking is just programming, the difference is weither its used with permission or not,
And these videos are not commiting a criminal act as he does them onnhis own network,
Nearly every video should be taken off youtube then as most "innocent" videos can be used in a illegal capacity,
Are they gonna remove the king of random videos because there are explosions with chlorine and brake fluid for example,
so aint that teaching terrorists?
People want to learn these things mostly out of curiousty or they have been a victim of a illegal act and want to know how it happened,
What about the videos that show what is poisonous to humans,
This can be used to commit murder,
So far i have given 2 examples of things that are far more dangerous and deadly to life but yet those videos are allowed
Shows we have freedom if we follow there rules,
Simular to dictatorship
Upside down I agree with you partner. What about those videos from Tik tok that show little girls dancing on UA-cam. Why don’t they fucking remove that? Hacking is used only for authenticated purposes as you’ve stated. But nope UA-cam community is a bunch of narcissistic policy. Hopefully they can change their minds and see the other side effects that come with it.
I says page not found and I have to register or log in..
Looks like I'm finishing with UA-cam Premium. I'll just pateron Kody direct.
Thank you
when put my adapter in monitor mode, I lose internet. I can't check the "Monitor" box I have to command line in Windows to change the wifi mode using C:\Windows\System32\Npcap\WlanHelper.exe Wi-Fi mode monitor . not sue what's wrong. maybe my card doesn't support both modes. can you help.
1k likes and 2 dislikes, dam
wow! 0 dislikes.
You jinxed it!
Hey Null Byte mate, just quick question out of this topic. Is it possible to turn on SSH on another PC without noticing the person ? I am just curious if some one can do that to me. If yes explain how please because I have turned on SSH and I did not turned it on.
Hello, I run a business and have up to 30-40 phones on a 2.4ghz network in a close proximity. What is the best option to keep a decent speed and lower or eliminate the disconnects?
Having more than a single access point would help if its disconnecting as you're trying to squeeze all the data into one point. you Could also look into the different "types" of Wi-Fi such as 802.11ac which, depending on the Wi-Fi you're currently using, could support more bandwidth. if the phones allow it and there's not much in the way of the access point and the phone you could switch to a 5ghz which would give you more bandwidth as well. It might also be worth it to see what your router is putting out and what it is capable of and going from there.
Thank you sir!
Which linux command you are using to show this beautiful output of all available wifi networks with their wifi types etc?
airodump-ng [your wifi interface in monitor mode]
So can you put a desktop NIC into monitoring mode using Windows 10?
It depends on the NIC not all of the chipsets support monitor mode.
You sly bastard. Add all these to your Cyber Weapons Lab playlist.
Thanks! It's on the playlist now
Recommend a video on how to intercept iPhone traffic with a proxy like Charles
will i actually get the port an app is using ? coz im gonna block that game app from our router that my son is playing non stop😅
So by using this method i can analyze if a phone have a spyware installed ??
I dont have the 801.11 radio information. When I get into settings and check the monitoring box onn wifii traffic, I get no traffic capture with either eapol or dns or any protocol
.
Thanks for this video. i partially got it working. I'm only seeing DNS traffic between my local Mac and the router. Everything else is 802.11 protocol which tells me it's not quite decrypting. I'm on a 2012 Mac on Catalina. if that helps.
So you are saying that doing it over mointor mode is better than arp spoffing ?
as I understood , I have to have usb wireless adapter . built in wireless is not enough ? right
Which version is best for an older Mac?
Dude, Please make a video and show us what chrome extensions you use🤩🤩
Already done nulb.app/x4jjs