Capturing IEEE802.11.x auth and capabilities data with tcpdump?

wifi tcpdump openwrt wpa2

Solution 1:

The feature to be able to read frames without association is called monitor mode.

Just like promiscuous mode for reading packets not addressed for the host, this IEEE 802.11 counterpart instructs the card&driver to make those frame available.

tcpdump is able to automatically enabled it for you, using the -I option. Note that activating it "might disassociate from the network with which it's associated", meaning you might get disconnected if that card was also your only link to the web. And if your driver is bad, you might even need to reboot to get the card back to its normal mode of operation.

Related

How to reload a class or package in Scala REPL?
iptables: Questions regarding the raw table
OpenVPN cannot Disable -ncp-disable Cipher Encryption
Converting an integer to a boxed enum type only known at runtime
Automatic start of a WebSphere Windows service
Can't find 301 redirect source
How to open dovecot backup on windows and save as *.eml
WDC WD40PURZ-85AKKY0 is missing smartclt attributes?
Calculate correlation with cor(), only for numerical columns
VLAN passthrough security
How to group mysql rows with same column value into one row?
Calling base class method in Python