Hello, can I somehow simulate an interface with a file? That is, I have a file with sniffed data (not sniffed with Wireshark) that consists of a bunch of hex numbers which symbolize the data going through the interface. Can I somehow input this data in Wireshark and dissect it with the protocols that I wish? Thank you very much! Best regards, Matheus Priebe Bertram asked 05 Dec '12, 02:59  Matheus Prie... |
2 Answers:
You could use a traffic generator/replay tool like bittwist, tcpreplay or ostinato to generate "life" traffic from a capture file, and recapture it with Wireshark. Warning: you should isolate the traffic generator in a network with no vital/production systems, or you might wreak havoc on your life network. answered 05 Dec '12, 04:07  Jasper ♦♦ |
You can use text2pcap. Format the data in a way that text2pcap understands and you might be able to dissect that data in Wireshark.
If your data (hex numbers) is only the TCP/UDP payload, you can tell text2pcap to add dummy IP+UDP/TCP headers (option -i, -u, -T). Regards answered 05 Dec '12, 10:58  Kurt Knochner ♦ |
