This is our old Q&A Site. Please post any new questions and answers at ask.wireshark.org.

Hello everybody. I m going to attend a Security Project where, in the very first part, I have to check that on my architecture (IOT) some message packets goes on plaintext and also other security problems, related both to communication security and authentication (very simple security problems). During a little software selection, I m evaluating to use wireshark to sniff those "unsafe" packets, but I was wondering if there are some particular API that could be helpful to me in order to pick these data and handle it on my business logic application, in order to automatizing vulnerabilities' checking in a test driven development way (iff the test pass, I know that the vulnerabilities' are fixed). Example of test: intercept an ID (of an authorized device) and try a connection with the same ID from a "malicious" device, ndr. Everything could helping me, thank a lot.

asked 28 Jun, 01:10

ciandro92's gravatar image

ciandro92
6113
accept rate: 0%

edited 28 Jun, 01:58


Would piping of tshark textual output to the input of your business logic application do?

permanent link

answered 28 Jun, 06:47

sindy's gravatar image

sindy
6.0k4850
accept rate: 24%

Exact, I need the body of the message (i think that a txt format is enough). Is possible on wireshark without using other API from other languages? My application need to use the body of the intercepted message to get some information for a test. e.g. if in a message I send a plain ID for an authorization phase, the test could use this ID to connect, and if the connection goes on, the test send me a notification for this vulnerability, until i repair it. I found a library in pyhthon (name pyshark) that represent a "wrapper" for wireshark application component: could it be useful? anyone have used this library to do some kind of operation (like I described)? Thanks

(28 Jun, 07:35) ciandro92
1

Your answer has been converted to a comment as that's how this site works. Please read the FAQ for more information.

(28 Jun, 08:23) Jaap ♦
Your answer
toggle preview

Follow this question

By Email:

Once you sign in you will be able to subscribe for any updates here

By RSS:

Answers

Answers and Comments

Markdown Basics

  • *italic* or _italic_
  • **bold** or __bold__
  • link:[text](http://url.com/ "title")
  • image?![alt text](/path/img.jpg "title")
  • numbered list: 1. Foo 2. Bar
  • to add a line break simply add two spaces to where you would like the new line to be.
  • basic HTML tags are also supported

Question tags:

×1,620
×36
×14
×10

question asked: 28 Jun, 01:10

question was seen: 312 times

last updated: 28 Jun, 08:23

p​o​w​e​r​e​d by O​S​Q​A