Hello friends, We have a packet capturing application product. we have developed a tool in which we first get the captured packet data ( pcap file based on metadata information provided in query) and provided a button on the GUI of the tool to open the retrieved packet data (pcap file) in wireshark analyzer. Now we want to incorporate this tool directly inside the wireshark analyzer. i.e. from wireshark menu, we could have a new separate menu for this kind of plugin or can embed in one of the existing menu like Tools -> (parallel to Lua menu). I am new to wireshark open source project. and not sure where to start from. in first place whether this is possible or not. Could you please confirm if this is possible and how? Thanks, --RC asked 11 Jul '16, 23:23 RCN edited 12 Jul '16, 08:35 Bill Meier ♦♦ showing 5 of 7 show 2 more comments |
From the new plugin expected to be developed, when the user clicks the menu for our product, then the original tool ( windows msi app) should be invoked and when the user inputs the metadata for query and gets the pcap as a result, that pcap then should open in the wireshark from which we called the external application msi.
I'm not sure a plugin approach would be possible for this as the command and control relation would be reversed. Maybe it could be envisioned through an capture file format plugin,
Possibly worth to go to the Wireshark Developer mailing list with this.
Hi Jaap, Thanks for your suggestion! Will try to check with Developer mailing list. When i checked the link you shared, it says that I need to first subscribe to the mailing list wireshark-users [at] wireshark.org I have already subscribed to this mail today, but just wanted to confirm, Is it fine to send a mail on this mailing list? I mean is this only way I can connect with community users rather than a community forum etc?
Thanks! --RC
Your answer has been converted to a comment as that's how this site works. Please read the FAQ for more information.
You can send right messages to the list right away. Subscribing means that you'll get the answers too.
Since this question is highly development related (as opposed to a user question) there will have a higher chance of a (good quality) discussion on this subject on the developer mailing list.
So subscribe and post to wireshark-dev for this development question.
Hi Jaap, Thanks for your suggestion! Will try to check with Developer mailing list. When i checked the link you shared, it says that I need to first subscribe to the mailing list wireshark-users [at] wireshark.org I have already subscribed to this mail today, but just wanted to confirm, Is it fine to send a mail on this mailing list? I mean is this only way I can connect with community users rather than a community forum etc?
Thanks! --RC
The community is carved into sections, being users and developers (and core-developers). For the User related discussions the wireshark-users[at]wireshark.org mailing list was created and for development related discussions the wireshark-dev[at]wireshark.org mailing list was created. Furthermore there's a Wiki to collect valuable information not (yet) compiled into documentation, and there's this Q&A site as user defined knowledge base. There is no forum