Wireshark-dev: Re: [Wireshark-dev] Can we put android phone device connected over USB to Win 7

From: Bálint Réczey <balint@xxxxxxxxxxxxxxx>
Date: Tue, 24 Feb 2015 13:24:15 +0100
2015-02-24 12:12 GMT+01:00 Shashikant Ajegaonkar <ajegaonkar@xxxxxxxxx>:
> Hi Balint and Michael,
>
> Thanks for the information.
>
> Hi Balint,
>
> Is there a way to save the captured files from wireshark running on Lil debi
> to the android device?
I have not tried that but I bet you can somehow see both filesystems.
If nothing else, scp would work.

Cheers,
Balint

>
> Is anyone aware of enumeration of WLAN interface from android phone  as WiFi
> interface (WLAN adapter) on Win 7 or Linux hosts?
>
>
> On Tue, Feb 24, 2015 at 2:54 PM, Bálint Réczey <balint@xxxxxxxxxxxxxxx>
> wrote:
>>
>> Hi Michal,
>>
>> 2015-02-24 9:03 GMT+01:00 Michal Labedzki <michal.labedzki@xxxxxxxxx>:
>> > Hello Bálint,
>> >
>> > That works as "application" on Android or OS? I am not sure that user
>> Lil' Debi is an Android application that lets you install Debian on a
>> loop device or in a chroot.
>> Then you can run a shell or any command as an OS process.
>>
>> > will be able to sniffing Android traffic on Debian like that.
>> I did capture traffic originating from my (Nexus 7) tablet, thus it
>> seems you can can capture everything.
>>
>> >
>> > I see two cases:
>> > 1. User want to capture Android traffic.
>> > 2. User want to use Android device as... sniffer (monitor mode?) to
>> > capture air traffic.
>> >
>> > "Lil' Debi" - I cannot found it on Play Store. F-Droid too.
>> It has been removed from Play Store, indeed.
>> The F-Droid link seems to be OK and I also see it listed on on my
>> Android devices in the F-Droid "store".
>>
>> Cheers,
>> Balint
>>
>> >
>> > On 24 February 2015 at 08:42, Bálint Réczey <balint@xxxxxxxxxxxxxxx>
>> > wrote:
>> >> 2015-02-24 8:13 GMT+01:00 Shashikant Ajegaonkar <ajegaonkar@xxxxxxxxx>:
>> >>> Hi All,
>> >>>
>> >>> Has anyone tried to put WiFi interface of Android device in promiscous
>> >>> mode?
>> >>> Is it possible to enumerate phone over adb interface as device
>> >>> wireless
>> >>> network interface in Win7 machine and configure it in promiscous mode
>> >>> for
>> >>> sniffer application?
>> >> It is not Win 7 related, but you can run Wireshark and capture in
>> >> promiscuous mode on Android by setting up a Debian chroot:
>> >> http://balintreczey.hu/blog/run-wireshark-on-android-using-lil-debi/
>> >>
>> >> Cheers,
>> >> Balint
>> >>
>> >> ___________________________________________________________________________
>> >> Sent via:    Wireshark-dev mailing list <wireshark-dev@xxxxxxxxxxxxx>
>> >> Archives:    http://www.wireshark.org/lists/wireshark-dev
>> >> Unsubscribe: https://wireshark.org/mailman/options/wireshark-dev
>> >>
>> >> mailto:wireshark-dev-request@xxxxxxxxxxxxx?subject=unsubscribe
>> >
>> >
>> >
>> > --
>> >
>> > Pozdrawiam / Best regards
>> >
>> > -------------------------------------------------------------------------------------------------------------
>> > Michał Łabędzki, Software Engineer
>> > Tieto Corporation
>> >
>> > Product Development Services
>> >
>> > http://www.tieto.com / http://www.tieto.pl
>> > ---
>> > ASCII: Michal Labedzki
>> > location: Swobodna 1 Street, 50-088 Wrocław, Poland
>> > room: 5.01 (desk next to 5.08)
>> > ---
>> > Please note: The information contained in this message may be legally
>> > privileged and confidential and protected from disclosure. If the
>> > reader of this message is not the intended recipient, you are hereby
>> > notified that any unauthorised use, distribution or copying of this
>> > communication is strictly prohibited. If you have received this
>> > communication in error, please notify us immediately by replying to
>> > the message and deleting it from your computer. Thank You.
>> > ---
>> > Please consider the environment before printing this e-mail.
>> > ---
>> > Tieto Poland spółka z ograniczoną odpowiedzialnością z siedzibą w
>> > Szczecinie, ul. Malczewskiego 26. Zarejestrowana w Sądzie Rejonowym
>> > Szczecin-Centrum w Szczecinie, XIII Wydział Gospodarczy Krajowego
>> > Rejestru Sądowego pod numerem 0000124858. NIP: 8542085557. REGON:
>> > 812023656. Kapitał zakładowy: 4 271500 PLN
>>
>> ___________________________________________________________________________
>> Sent via:    Wireshark-dev mailing list <wireshark-dev@xxxxxxxxxxxxx>
>> Archives:    http://www.wireshark.org/lists/wireshark-dev
>> Unsubscribe: https://wireshark.org/mailman/options/wireshark-dev
>>
>> mailto:wireshark-dev-request@xxxxxxxxxxxxx?subject=unsubscribe
>
>
>
>
> --
> Thanks & Regards,
> Shashikant P. Ajegaonkar
> +91-8886889456