I want to write a wireshark dissector in ubuntu to write an amf packet to a file. asked 15 Oct '12, 22:59  Akhil edited 15 Oct '12, 23:00 |
This is a static archive of our old Q&A Site.
Please post any new questions and answers at ask.wireshark.org.
There already is a dissector: RTMPT
Dissectors don't write stuff to files, they just dissect packets and construct a tree of fields and subfields. Other parts of Wireshark can write stuff to files, including a "printed-out" version of that tree.
If a Wireshark dissector is dissecting an AMF packet, the packet is already in a file - the file that Wireshark read.
What exactly do you want to do here?
And if you want to write AMF objects to a file, then you'll need to implement a tap. So what do you want to do?