https://community.hpe.com/t5/security-e-series/wireshark-packet-sniffing/m-p/5922087#M188 <P>Piotr,</P><P>It's all about filters with Wireshark.&nbsp; You can run the capture with filters or use filters after the capture is complete to see exactly what you want.&nbsp; Filter by IP or by protocol.&nbsp;</P><P>&nbsp;</P><P>Check here for Display Filter Reference:&nbsp; <A href="http://www.wireshark.org/docs/dfref/" target="_blank">http://www.wireshark.org/docs/dfref/</A></P><P>Check here forHow To Set Up a Capture:&nbsp; <A href="http://wiki.wireshark.org/CaptureSetup" target="_blank">http://wiki.wireshark.org/CaptureSetup</A></P><P>&nbsp;</P><P>The Wireshark book to use and have for ref is: <A href="http://www.chappellu.com/wiresharkbook.html" target="_blank">http://www.chappellu.com/wiresharkbook.html</A></P><P>and of course...Laura Chappels blog: <A href="http://laurachappell.blogspot.com/" target="_blank">http://laurachappell.blogspot.com/</A></P><P>&nbsp;</P><P>Other than that, you may sign up for courses at WiresharkU that are very good.&nbsp; You can even get an all-access pass that is moderately priced that will allow you to see and attend all online courses for one year.</P><P>Good luck and hope this helps!</P><P>&nbsp;</P> Fri, 04 Jan 2013 15:43:39 GMT bspencer63 2013-01-04T15:43:39Z https://community.hpe.com/t5/security-e-series/wireshark-packet-sniffing/m-p/4330830#M184 <P>Hi there<BR /><BR />I'm using Wireshark to capture packets in my network. As it's capturing I'm sending some chat messages using Skype.<BR />Then I'm trying to read those strings from Wireshark: File &gt; Find Packet &gt; String <BR /><BR />I can't find any of those strings I was sending via Skype.<BR /><BR />Does anyone know why ?<BR /><BR />Can I somehow set a trap for Skype messages only ?<BR /><BR />Regards<BR /><BR />Peter<BR /><BR /></P> <P>&nbsp;</P> <P>&nbsp;P.S.This thread has been moved from Insight Remote Support&gt;Security to Security &gt; HP Networking- HP Forums Moderator</P> Sat, 05 Jan 2013 02:34:08 GMT https://community.hpe.com/t5/security-e-series/wireshark-packet-sniffing/m-p/4330830#M184 Piotr Kirklewski 2013-01-05T02:34:08Z https://community.hpe.com/t5/security-e-series/wireshark-packet-sniffing/m-p/4330831#M185 Peter,<BR /><BR />Not going to happen with just wireshark.<BR /><BR />Remote-exploit.org talks about it being encrypted, and points to a Black Hat paper <A href="http://www.blackhat.com/presentations/bh-europe-06/bh-eu-06-biondi/bh-eu-06-biondi-up.pdf" target="_blank">http://www.blackhat.com/presentations/bh-europe-06/bh-eu-06-biondi/bh-eu-06-biondi-up.pdf</A> <BR /><BR />Do a google search with 'sniff skype' and you will see it is not a trivial exercise.<BR /><BR />Fred Tue, 24 Feb 2009 22:10:41 GMT https://community.hpe.com/t5/security-e-series/wireshark-packet-sniffing/m-p/4330831#M185 Fred K. Abell Jr._1 2009-02-24T22:10:41Z https://community.hpe.com/t5/security-e-series/wireshark-packet-sniffing/m-p/4330832#M186 Okay, here is an update. This answer requires permission and may be considered hacking. It also may violate wiretapping laws. REALLY REALLY REALLY make sure it is legal and you have permission!!!!!!!<BR /><BR />But if you are doing research or testing, you could probably use something like Paros. Paros is a security tool for web application vulnerability assessment. This is a man in the middle type of situation. The skype ssl's to the proxy, and the proxy ssl's onto the destination. The proxy sees everything that goes through.<BR /><BR />Please do not use this covertly or illegality. <BR /><BR />Fred<BR /> Tue, 12 May 2009 19:03:43 GMT https://community.hpe.com/t5/security-e-series/wireshark-packet-sniffing/m-p/4330832#M186 Fred K. Abell Jr._1 2009-05-12T19:03:43Z https://community.hpe.com/t5/security-e-series/wireshark-packet-sniffing/m-p/4330833#M187 hi there,<BR /><BR />i am doing research on siptoskype gateway. i have used astrix for that as the skype communicate with sip only i want to see its Start of Message (SOM) or its frame message or ip header message but could not figure out how i can sneak packet of skype from wireshark,,<BR /><BR />any help will be acceptable Wed, 16 Feb 2011 00:04:50 GMT https://community.hpe.com/t5/security-e-series/wireshark-packet-sniffing/m-p/4330833#M187 krepaa 2011-02-16T00:04:50Z https://community.hpe.com/t5/security-e-series/wireshark-packet-sniffing/m-p/5922087#M188 <P>Piotr,</P><P>It's all about filters with Wireshark.&nbsp; You can run the capture with filters or use filters after the capture is complete to see exactly what you want.&nbsp; Filter by IP or by protocol.&nbsp;</P><P>&nbsp;</P><P>Check here for Display Filter Reference:&nbsp; <A href="http://www.wireshark.org/docs/dfref/" target="_blank">http://www.wireshark.org/docs/dfref/</A></P><P>Check here forHow To Set Up a Capture:&nbsp; <A href="http://wiki.wireshark.org/CaptureSetup" target="_blank">http://wiki.wireshark.org/CaptureSetup</A></P><P>&nbsp;</P><P>The Wireshark book to use and have for ref is: <A href="http://www.chappellu.com/wiresharkbook.html" target="_blank">http://www.chappellu.com/wiresharkbook.html</A></P><P>and of course...Laura Chappels blog: <A href="http://laurachappell.blogspot.com/" target="_blank">http://laurachappell.blogspot.com/</A></P><P>&nbsp;</P><P>Other than that, you may sign up for courses at WiresharkU that are very good.&nbsp; You can even get an all-access pass that is moderately priced that will allow you to see and attend all online courses for one year.</P><P>Good luck and hope this helps!</P><P>&nbsp;</P> Fri, 04 Jan 2013 15:43:39 GMT https://community.hpe.com/t5/security-e-series/wireshark-packet-sniffing/m-p/5922087#M188 bspencer63 2013-01-04T15:43:39Z