usb sniffing with wireshark

usb wireshark usb-flash-drive
Neel Basu picture Neel Basu · Feb 11, 2011 · Viewed 26.2k times · Source

at the moment I am using usbmon to sniff usb. for better understandability I want to use wireshark. I've used wireshark before for sniffing ethernet packets. But what to capture to sniff USB Packets ? I meant I need to start by selecting which interface to capture in wireshark. but what wold I select there for usb ?

Answer

przemo_li picture przemo_li · Apr 28, 2013

Grab newest wireshark. Use lsusb before and after plugin in device so You know which usb bus its plugged into.

type in terminal:

su -c "modprobe usbmon" && su -c "wireshark"

(First load kernel module that allow for usb sniffing for root, second load wireshark as root)

Than select usbmonX, where X stand for usb bus number (lsusb show those numbers).

After than you still need to filter packets for device / vendor id, or something else device specific, as wireshark will show all packets from all devices plugged into that bus. (Again lsusb before/after plugging you device will help).

Related questions

How to install Wireshark on Linux and capture USB traffic?

I have encountered numerous problems in the installation of Wireshark, and the capture of USB traffic, especially due to user permissions. In the answer, I describe a full workflow for doing that. The answers to each individual problems are given …

Read More
How do I connect to a terminal to a serial-to-USB device on Ubuntu 10.10 (Maverick Meerkat)?

I am trying to connect minicom to a serial device that is connected via a USB-to-serial adapter. This is a PL2303 and from everything I've read no additional drivers are required. The device is recognised as a PL2303. I'm a …

Read More
How to recognize USB devices in Virtualbox running on a Linux host?

I tried to use USB devices without any success. It seems they are not detected by Virtualbox itself, since if I select the guest from the Virtualbox home (I'm using a Windows XP 3 guest), choose Settings -> USB -&…

Read More