This is a static archive of our old Q&A Site. Please post any new questions and answers at ask.wireshark.org.

Adding new features to wireshark

0

Hello, I would like to know about the below things.

  1. Please let me know can I add a custom protocol (in the application layer) as a plugin?
  2. Can we write our own plugin (add new features for ex: display statistics information ) and integrate this into wireshark ?

Thank you.

asked 18 Aug '16, 02:03

stadkama's gravatar image

stadkama
11226
accept rate: 0%


One Answer:

2

Yes and yes. See the Developers Guide which mainly discusses building dissectors using C, but you can also do this using Lua. There is also the doc directory in the source tree with the particular files README.dissector and README.plugins that may be of interest.

Note that Wireshark is licenced under the GPL, so if you distribute your plugin outside your company you must make the source code for the plugin available.

answered 18 Aug '16, 05:16

grahamb's gravatar image

grahamb ♦
19.8k330206
accept rate: 22%

Thank you. can we make GUI changes also like adding a menu item which has some features?

(01 Sep '16, 04:25) stadkama

Did you look at README.plugins, Sect. 6 discusses GUI options for plugins?

There's also the Lua equivalent here.

(01 Sep '16, 04:36) grahamb ♦

I went through it...If I am not wrong it is done using Qt right?

(13 Sep '16, 01:47) stadkama

If using C (or C++ actually), then yes you are directly using Qt. If using Lua, then you are limited to the Wireshark Lua API.

(13 Sep '16, 04:24) grahamb ♦