Wireshark does not only capture network traffic, but also different things like USB traffic. I needed that today and it needs some additional setup on Linux. There’s something in the Wireshark wiki on that topic, but I consider that not an elegant solution: USB capture setup.
The solution I use is basically one proposed on stackoverflow and uses a separate Linux system group and udev: usbmon (wireshark, tshark) for regular user.
On Debian you can do this:
addgroup usbmon addgroup adahl usbmon
You have to log off and on again, check if you are in that group with the command
Now create a new file
/etc/udev/rules.d/75-usbmon.rules and put this into it:
SUBSYSTEM=="usbmon", GROUP="usbmon", MODE="640"
modprobe usbmon your devices
/dev/usbmon* should belong to the new usbmon group and you can start capturing things with Wireshark.