CRAWDAD metadata: tools/process/pcap/Wifipcap (v. 2008-02-01)
A simple C++ wrapper around libpcap that allows applications to
selectively demultiplex 802.11 frames, and the most common layer 2 and
layer 3 protocols contained within them. Basically, the wifipcap
library handles all the parsing of 802.11 frames (and/or layer 2/3
packets) from the pcap file (or stream).
[xml metadata]
Note: This metadata was prepared by the CRAWDAD team and verified by the data set (or tool) authors. We have made every effort to ensure its accuracy, but urge all users to consider the metadata and data carefully and be sure that their use in research is consistent with the nature and limitations of the data. We welcome any corrections. This metadata was prepared based on the following reference(s):
CRAWDAD metadata structure[what is CRAWDAD metadata]
- [Data]
- [Tools]
- [Tool] tools/process/pcap/Wifipcap (v. 2008-02-01) [what's new] [download 48KB gz from: US UK]
- [Authors]
- [Author] Jeffrey Pang
- [Papers]
You can see more papers that use this dataset or tool at citeulike's 'crawdad' group with tag tools_process_pcap_Wifipcap . Please add more papers. Also please cite this data set using the following bibtex (or cite one of the papers below).
- [Paper] klasnja-wifi-privacy
- [Paper] pang-fingerprinting
[Tool] tools/process/pcap/Wifipcap (v. 2008-02-01) | top |
| version | v. 2008-02-01 |
| changes | the initial version. |
| bibtex |
@MISC{tools-process-pcap-Wifipcap-2008-02-01,
author = {Jeffrey Pang},
title = {{CRAWDAD} tool tools/process/pcap/Wifipcap (v. 2008-02-01)},
howpublished = {Downloaded from http://crawdad.cs.dartmouth.edu/tools/process/pcap/Wifipcap},
month = feb,
year = 2008
}
|
| metadata last modified | 2009-07-09 |
| summary | A simple C++ wrapper around libpcap that allows applications to selectively demultiplex 802.11 frames, and the most common layer 2 and layer 3 protocols contained within them. Basically, the wifipcap library handles all the parsing of 802.11 frames (and/or layer 2/3 packets) from the pcap file (or stream). |
| release date | 2008-02-01 |
| web site | http://www.cs.cmu.edu/~jeffpang/research.shtml#software |
| wiki | go to the wiki page for this tool |
| keyword | 802.11, 802.11 frames, RFMON, packet trace, tcpdump |
| authors | Jeffrey Pang |
| license | //////////////////////////////////////////////////////////////////////////////// // Mercury and Colyseus Software Distribution // // Copyright (C) 2004-2005 Ashwin Bharambe (ashu@cs.cmu.edu) // 2004-2005 Jeffrey Pang (jeffpang@cs.cmu.edu) // 2004 Mukesh Agrawal (mukesh@cs.cmu.edu) // // This program is free software; you can redistribute it and/or // modify it under the terms of the GNU General Public License as // published by the Free Software Foundation; either version 2, or (at // your option) any later version. // // This program is distributed in the hope that it will be useful, but // WITHOUT ANY WARRANTY; without even the implied warranty of // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU // General Public License for more details. // // You should have received a copy of the GNU General Public License // along with this program; if not, write to the Free Software // Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 // USA //////////////////////////////////////////////////////////////////////////////// |
| build | - How to compile wifipcap.
In Linux:
Enter this directory and type:
make
In Windows:
Open wifipcap.sln in Visual Studio and build it.
You will need to have the winpcap include and library files
in the appropriate search paths. |
| usage | For an overview see wifipcap.h.
(1) Include the header "wifipcap.h" in your application C++ file(s).
(2) Implement a subclass of WifipcapCallbacks. This class has one
member function for each type of 802.11 frame and layer 2/3
packets. Each of these functions will be called as a frame/packet
is parsed.
(3) Create an instance of Wifipcap with either a pcap trace file or
a live device to capture packets from.
(4) Call Wifipcap::Run with your instance of WifipcapCallbacks.
(5) Compile your program linking to libpcap and wifipcap.a.
On Linux:
g++ -o myprogram myprogram.c /path/to/wifipcap.a -lpcap
On Windows:
Link the following libraries:
wpcap.lib ws2_32.lib WINMM.LIB wifipcap.lib
Make sure wifipcap.lib is in the library path. |
| example | Please see sample.cpp. |
| algorithm | Most of the code is derived from tcpdump. Linux: Requires libpcap >= 0.9.4 on Linux. Windows: Requires WinPcap >= 4.0.2 and AirPcap for 802.11 capture See: http://www.cacetech.com/support/downloads.htm |
| download url | Download (48KB gz) (MD5 Hash: f72857426f49ff63d7afe5a570a6ab0a) from US UK |
[Author] Jeffrey Pang | top |
| jeffpang@cs.cmu.edu | |
| institution | Carnegie Mellon University |
| department | Computer Science |
| position | Ph.D candidate |
| address | School of Computer Science Carnegie Mellon University 5000 Forbes Ave. Pittsburgh, PA 15213-3891 |
| phone | 412-268-3621 |
| web site | http://www.cs.cmu.edu/~jeffpang/ |
| related data/tools | cmu/hotspot (v. 2009-04-15) tools/process/pcap/Wifipcap (v. 2008-02-01) tools/collect/802.11/Wifi-Scanner (v. 2009-04-15) |
[Paper] klasnja-wifi-privacy | top |
| category | inproceedings |
| authors | Klasnja, Predrag Consolvo, Sunny Jung, Jaeyeon Greenstein, Benjamin M. LeGrand, Louis Powledge, Pauline Wetherall, David |
| title | When I am on Wi-Fi, I am fearless": privacy concerns & practices in eeryday Wi-Fi use |
| keywords | measurement |
| keywords | wireless |
| keywords | tools_process_pcap_Wifipcap |
| keywords | crawdad |
| booktitle | CHI '09: Proceedings of the 27th international conference on Human factors in computing systems |
| year | 2009 |
| pages | 1993-2002 |
| location | Boston, MA, USA |
| publisher | ACM |
| address | New York, NY, USA |
| related data/tools | tools/process/pcap/Wifipcap |
[Paper] pang-fingerprinting | top |
| category | inproceedings |
| authors | Jeffrey Pang Ben Greenstein Ramakrishna Gummadi Srinivasan Seshan David Wetherall |
| title | 802.11 user fingerprinting |
| booktitle | MobiCom '07: Proceedings of the 13th annual ACM international conference on Mobile computing and networking |
| year | 2007 |
| pages | 99-110 |
| address | Montreal, Quebec, Canada |
| keywords | measurement |
| keywords | wireless |
| keywords | uw_sigcomm2004 |
| keywords | tools_process_pcap_Wifipcap |
| keywords | crawdad |
| download url | http://doi.acm.org/10.1145/1287853.1287866 |
| publisher | ACM Press |
| abstract | The ubiquity of 802.11 devices and networks enables anyone to track our every move with alarming ease. Each 802.11 device transmits a globally unique and persistent MAC address and thus is trivially identifiable. In response, recent research has proposed replacing such identifiers with pseudonyms (i.e., temporary, unlinkable names). In this paper, we demonstrate that pseudonyms are insufficient to prevent tracking of 802.11 devices because implicit identifiers, or identifying characteristics of 802.11 traffic, can identify many users with high accuracy. For example, even without unique names and addresses, we estimate that an adversary can identify 64% of users with 90% accuracy when they spend a day at a busy hot spot. We present an automated procedure based on four previously unrecognized implicit identifiers that can identify users in three real 802.11 traces even when pseudonyms and encryption are employed. We find that the majority of users can be identified using our techniques, but our ability to identify users is not uniform; some users are not easily identifiable. Nonetheless, we show that even a single implicit identifier is sufficient to distinguish many users. Therefore, we argue that design considerations beyond eliminating explicit identifiers (i.e., unique names and addresses), must be addressed in order to prevent user tracking in wireless networks. |
| related data/tools | tools/process/pcap/Wifipcap |