This post is older than 2 years and might not be relevant anymore
More Info: Consider searching for newer posts

sniffer nRF 802.15.4 paquets live with python-script

Hello,

I want to capture 802.15.4 nRF packets with a python script using the pyshark library and an nRF52840 DK sniffer and an nRF52840 Dongle.
the problem is that when I launch my python script I receive 0 packets. on the other hand on Wireshark I manage to sniff 802.15.4 packets,
for info I use the following function:

capture = pyshark.LiveCapture(interface='COM20')

you can help me to solve this problem please

Best regards,

Ayoub GH

0 kacper.szewenko over 3 years ago
Hi,

Unfortunately, I have never used pyshark with LiveCapture API for sniffing packets, but I think you can use the existing implementation of 802.15.4 sniffer: https://github.com/NordicSemiconductor/nRF-Sniffer-for-802.15.4

You can use the extcap_cature API method giving the path to the output pcap file, comport, channel, and metadata to start sniffing. It reads the packets straight from the serial port and creates the .pcap file for logging purposes. Then this file can be opened in python and can be taken into parsing through pyshark - I am using pyshark API:

capture = CaptureFromPipe(pipe=pcap_file_pipe)

Moreover, pyshark is a wrapper for Tshark and Tshark needs to have a configuration file with the master key to properly decode the packets. In case of running it under Linux the file should be in the directory:

~/.config/wireshark/ieee802154_keys

and it should contain the master key, e.g. of the file:

# This file is automatically generated, DO NOT MODIFY. "00112233445566778899aabbccddeeff","0","Thread hash"
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel