I found similar questions but they do not solve my problem
I have a pcap file (screenshot of it opened in Wireshark below) which contains some 802.11 frame data
I tried to read it using the following code I found from this question. But all it printed was the following:
Code:
from scapy.all import Dot11
from scapy.all import sniff
def parse(frame):
if frame.haslayer(Dot11):
print("ToDS:", frame.FCfield & 0b1 != 0)
print("MF:", frame.FCfield & 0b10 != 0)
print("WEP:", frame.FCfield & 0b01000000 != 0)
print("src MAC:", frame.addr2)
print("dest MAC:", frame.addr1)
print("BSSID:", frame.addr3)
print("Duration ID:", frame.ID)
print("Sequence Control:", frame.SC)
print(feature(frame))
print("\n")
else:
print("Not dot11")
sniff(offline="./testData/test.pcap", prn=parse)
Result:
D:\Apps\Python3\python.exe F:/tes/pcapReader/main.py
Not dot11
Not dot11
Not dot11
Not dot11
...
From this, what I understand is that there are no dot11 packets in my trace, which is confusing because the protocol for most packets is 802.11 according to the Wireshark output.
I also tried to use the dpkt 802.11 package, but didn't get any result
What am I missing here?
(I'm using Python3, if that's any help)
