PC端使用wireshark监控Android手机流量
为了了解其他应用程序如何连接到互联网服务,我想通过 Linux PC 上的 Wireshark 监控流量。我知道有适用于 Android 的 Wireshark 工具,但这些工具要求手机已 root,而我的手机则没有。
我读过几个地方,如果手机和运行wireshark的电脑使用相同的wifi连接,则可以监控电脑上Wireshark的流量(如果它在混杂模式下运行)。
我已经尝试过,但除此之外我看不到任何流量:
77 4.638965 ZygateCo_4f:70:27 Htc_b7:a4:78 LLC I, N(R)=0, N(S)=92; DSAP 0xe2 Individual, SSAP 0x36 Response
除了这些行(我不知道这意味着什么)之外,在 Wireshark 中看不到来自手机的流量。
是否需要执行进一步的步骤才能使此设置正常工作?
或者,是否有其他方法可以拦截未root手机上的流量?
(一种方法是将电脑设置为接入点,然后将手机连接到它,但我还没有成功地将我的linux电脑(Debian)设置为AP)
In order to learn how other applications connect to internet services I would like to monitor the traffic via Wireshark on my Linux PC. I know there are Wireshark tools for Android, but these require that the phone is rooted which mine isn't.
I have read several places that if the phone and the pc running wireshark use the same wifi connection, it is possible to monitor the traffic from Wireshark on the pc if it is running in promiscous mode.
I have tried that but I can't see any traffic except this:
77 4.638965 ZygateCo_4f:70:27 Htc_b7:a4:78 LLC I, N(R)=0, N(S)=92; DSAP 0xe2 Individual, SSAP 0x36 Response
Apart from these lines (which I have no clue what means) there is no traffic from the phone to see in Wireshark.
Are the further steps to perform in order to have this setup working?
Alternatively, are there other ways to intercept the traffic on a un-rooted phone?
(One way is to setup the pc as an access point and then connect the phone to it, but I have not succeeded in setting up my linux pc (Debian) as an AP)
如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。
绑定邮箱获取回复消息
由于您还没有绑定你的真实邮箱,如果其他用户或者作者回复了您的评论,将不能在第一时间通知您!
发布评论
评论(1)
WireShark 仅监控计算机上的网卡。但是,您可以使用集线器监控手机的流量。请按照以下步骤执行此操作:
使用集线器的原因是因为集线器会将流量转发到所有端口。
WireShark monitors only netwrok card on your computer. However, you can monitor the traffic from your phone by using hub. Follow these steps to do this:
The reason of using hub is because a hub does forward traffic to all ports.