Giters

9gunpi / wireshark-dissector

Dissector of Open Drone ID broadcast protocol for Wireshark

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

opendroneid-wireshark-dissector

Wireshark dissector plugin to parse and analyze captured Open Drone ID packets

It currently supports Wi-Fi Beacon, Wi-Fi NAN and Bluetooth 4. Bluetooth 5 will be next.

Guide

  1. Installation of dissector in Wireshark (Windows)

    1. Within Wireshark, click on "Help->About->Folders->Personal Lua Plugins" and allow it to create a "plugins" folder as needed.
    2. Clone this repo to that plugins folder.
    3. While in Wireshark, press CTRL+SHIFT+L to re-read the new dissector(s)

  2. Wi-Fi sniffing

    1. Open Drone ID over Wi-Fi works from broadcast frames without a connection to any specific network. Therefore, it is necessary to get Wireshark to sniff using "monitor mode". If you have trouble getting it working directly with your installed Wi-Fi device and drivers, we have been able to get it to work by doing the following:
    2. Install "Acrylic Wi-Fi Sniffer" (trial)
    3. Run Acrylic Wi-Fi sniffer, and click "continue"
    4. Run Wireshark as Administrator (this is a must)
    5. Click on "Config Gear" next to Acrylic Wi-Fi Sniffer interface. Wireshark Wi-Fi start
    6. Select Channel 6 and 20 Mhz on the next configuration dialog. Wireshark Wi-Fi config
    7. Many of the integrated Wi-Fi adapters will not support monitor mode (and therefore, will not work for this purpose), some USB adapters do. A supported list can be found here. If you have a monitor-mode supporting Wi-Fi adapter, then you should be able to get a sniff similar to the one below: Wireshark Wi-Fi Screenshot

  3. Bluetooth Sniffing

    1. Although one may be able to get an integrated hardware working, you may have better luck with some external bluetooth device that has already been proven for this purpose.

    2. The Nordic nRF52840 dongle was used to validate the dissector (BT4 only so far, we're not yet sure on its support of BT5 Long Range sniffing). To get the dongle working, you must do the following:

      1. Install nRF Connect.
      2. Within nRF Connect, install the "Programmer" app.
      3. Download/Install nRF sniffer according to the Nordic instructions.

    3. Once the BT sniffer is setup in Wireshark, be sure to start the sniffing process using the "config gear" icon and select "Advertisement Frames only" in the startup dialog (this will limit the noise). Wireshark BT Start

    4. Start Sniffing! Wireshark BT Screenshot

About

Dissector of Open Drone ID broadcast protocol for Wireshark

License:Apache License 2.0

Languages

Language:Lua 100.0%