2024-05-09 07:19:27 +0000 | commented question | Wireshark on RHEL does not show all interfaces What does tcpdump -D show? If it shows nothing or reports an error, what does sudo tcpdump -D show? |
2024-05-07 18:53:34 +0000 | commented question | Observe error message To which particular error are you referring? The capture mechanisms used by libpcap, and thus by Wireshark, don't repor |
2024-05-03 06:46:13 +0000 | commented answer | Is there a replacement for the -Q cli option? tshark: The capture session could not be initiated on capture device "nRF Sniffer for Bluetooth LE" (No such device exi |
2024-05-03 06:42:45 +0000 | commented answer | Is there a replacement for the -Q cli option? @Chuckc, does tshark -i COM5-4.2 work, as well? |
2024-05-02 23:21:03 +0000 | commented answer | Is there a replacement for the -Q cli option? What happens if you try to use an extcap with tshark? |
2024-05-02 08:18:24 +0000 | edited question | Is there a replacement for the -Q cli option? Is there a replacement for the Q cli option. Wireshark 0.99.6 CLI had -Q option that caused Wireshark to exit when captu |
2024-05-02 08:14:47 +0000 | commented answer | Is there a replacement for the -Q cli option? I have to use wireshark and not tshark because I'm capturing from a virtual device. ... Dumpcap is the reason t |
2024-04-20 17:45:25 +0000 | answered a question | Wireshark Portable does not start in "Program Files (Portable)" folder Please file an issue for this on the Wireshark issues list. |
2024-04-19 05:43:53 +0000 | received badge | ● Rapid Responder (source) |
2024-04-19 05:43:53 +0000 | answered a question | Secure PCAP-over-IP with Wireshark? Like with socat? I am curious to whether Wireshark, natively, or by combining with additional tools, can support reading PCAP-over-IP |
2024-04-18 17:57:02 +0000 | edited question | Is there any capture filter available to capture only beacons and action frames that contain Channel Switch Announcement frames in them? Is there any capture filter available to capture only beacons and action frames that contains Channel Switch Announcemen |
2024-04-17 04:25:57 +0000 | commented answer | mixing c/c++ to write a plugin With proper use of extern "C" it may be possible to write it completely in C++ (if C++ compilers turn extern "C" functio |
2024-04-10 21:55:49 +0000 | answered a question | Tshark - Can I use ring buffer with text files Do you know a way of doing it with tshark ? Text dissections are written by TShark to the standard output, so there |
2024-04-10 21:55:49 +0000 | received badge | ● Rapid Responder (source) |
2024-04-10 21:52:37 +0000 | commented question | How to add a dissector below USB/FTDI? The data appears "in" the FTDI messages broken out by existing Wireshark dissectors so could someone point me at an e |
2024-04-01 19:24:06 +0000 | edited question | Dark mode text colour issue in filter text box Dark mode text colour issue Hello Wireshark users, Wireshark developers. I am using Wireshark on Garuda (an Arch-based |
2024-03-31 03:17:11 +0000 | edited question | Install Wireshark silently and capture traffic when the user logs in Install Wireshark silently and capture logs Hello, I need to capture a Wireshark logs when the user login to the first |
2024-03-24 23:04:49 +0000 | answered a question | rpcaps or remote pcap over TLS support in Wireshark for Windows? Will Wireshark on Windows ever have working TLS/rpcaps support to match rpcapd deployments that do support TLS? If |
2024-03-24 23:04:49 +0000 | received badge | ● Rapid Responder (source) |
2024-03-24 21:16:28 +0000 | commented answer | How to enable rpcap support in linux version Is it possible for tshark or dumpcap to get the --enable-remote status from libpcap so that it could be displayed in |
2024-03-24 01:58:23 +0000 | answered a question | Does Wireshark on Windows rely on Npcap and Winpap for all remote pcap functionality? is that statement true or a mistaken assumption? It is 100% mistaken. I've added comments to that GitHub issue poi |
2024-03-24 01:58:23 +0000 | received badge | ● Rapid Responder (source) |
2024-03-22 18:25:45 +0000 | edited answer | rpcap interface protocol syntax for non-null authentication? However, it's not clear to me how the underlying mechanism in the GUI route operates as the resulting interface strin |
2024-03-22 06:35:40 +0000 | answered a question | rpcap interface protocol syntax for non-null authentication? However, it's not clear to me how the underlying mechanism in the GUI route operates as the resulting interface strin |
2024-03-22 06:35:40 +0000 | received badge | ● Rapid Responder (source) |
2024-03-16 06:40:51 +0000 | commented answer | pcap: network type 285 unknown or unsupported - Unable to open Marvell DSA tagged pcap file Could the table be moved from the .c to a .h? Or either to libwireshark or libwsutil. |
2024-03-16 02:13:37 +0000 | commented answer | pcap: network type 285 unknown or unsupported - Unable to open Marvell DSA tagged pcap file Could/should the description be included in the error message? Not all programs that use libpcap include dissectors |
2024-03-16 00:14:23 +0000 | answered a question | pcap: network type 285 unknown or unsupported - Unable to open Marvell DSA tagged pcap file Do Iassume correctly that Wireshark does not support netwrok type 285 Yes. Is there any plan for support? Didn' |
2024-03-16 00:14:23 +0000 | received badge | ● Rapid Responder (source) |
2024-03-13 23:29:37 +0000 | commented question | Can we do x11 with wireshark What do you mean by "configure x11"? The Windows and macOS versions of Wireshark don't use X11 for their user interface |
2024-03-10 23:45:03 +0000 | commented answer | Malformed packets on Linux Wireshark 4.2.2 but not Mac Wireshark 4.2.3 for the same .pcap I assume version 4.2.3 will be available on the apt package manager in the near future? That's up to the maintainer |
2024-03-10 23:43:24 +0000 | edited question | Malformed packets on Linux Wireshark 4.2.2 but not Mac Wireshark 4.2.3 for the same .pcap Malformed packets on Linux but not Mac for the same .pcap I shared a .pcap with my colleague who is running Wireshark 4. |
2024-03-08 20:11:50 +0000 | commented answer | Unable to open PCAP file On most UN*Xes the command file is available that can help identifying the true type (by contents). On most UN*Xes ther |
2024-03-08 19:55:31 +0000 | commented question | "unable to set channel or offset" when switching WiFi channels When I switch from channel 1 to another channel (e.g 2 or 124 doesnt matter) I get the message ""unable to ste channe |
2024-03-08 19:42:21 +0000 | commented answer | We are looking for commands line option in tshark to enable Initialization Vector from Ignore protection bit list in wireshark GUI. Unfortunately, the documentation on preferences isn't very good, where "isn't very good" means "close to nonexistent"; I |
2024-03-08 19:36:21 +0000 | edited question | We are looking for commands line option in tshark to enable Initialization Vector from Ignore protection bit list in wireshark GUI. Actually we are looking for commands line option in tshark to enable Initialization Vector from Ignore protection bit l |
2024-03-07 05:44:59 +0000 | commented answer | Why wireshark failed to decode prelogin message in tds protocol That doesn't fix the problem for Wireshark. If Wireshark isn't showing the tds.prelogin.option.traceid field, please re |
2024-03-06 20:22:07 +0000 | answered a question | LNK2001 error building WS with custom dissector That company's plugin is badly-designed. It attempts to register libwiretap routines in the dissector registration routi |
2024-03-06 20:22:07 +0000 | received badge | ● Rapid Responder (source) |
2024-03-06 20:02:56 +0000 | commented question | LNK2001 error building WS with custom dissector And there's the error, converted from small text, some of which is red-on-black, to regular text for the benefit of olde |
2024-03-06 20:01:02 +0000 | commented question | LNK2001 error building WS with custom dissector And there's the error, converted from small text, some of which is red-on-black, to regular text for the benefit of olde |
2024-03-06 20:00:38 +0000 | commented question | LNK2001 error building WS with custom dissector And there's the error, converted from small text, some of which is red-on-black, to regular text for the benefit of olde |
2024-03-06 19:59:06 +0000 | commented question | LNK2001 error building WS with custom dissector And there's the error, converted from small text, some of which is red-on-black, to regular text for the benefit of olde |
2024-03-01 20:37:03 +0000 | edited question | Why can't I see network adapters, or capture on them, after installing Wireshark on Ubuntu? Accessing hardware network interfaces I use Wireshark on Ubuntu 22.04 . First of all, it was not exactly clear which co |
2024-03-01 20:36:03 +0000 | answered a question | Why can't I see network adapters, or capture on them, after installing Wireshark on Ubuntu? What you should do is: install with "non-superusers should be allowed to capture from network interfaces"; run sudo gp |
2024-03-01 20:36:03 +0000 | received badge | ● Rapid Responder (source) |
2024-02-29 08:25:30 +0000 | commented question | How To Fix Wireshark Time-It is the wrong time? My time is wrong on Wireshark, right on my computer. Is Wireshark running on your computer, and are you using Wires |
2024-02-23 19:18:23 +0000 | edited question | Network interface doesn't show up on Linux Intel AX210 wifi support on Linux Just got a new laptop with a AX210 wifi card and although it works under Linux ( Linux |
2024-02-21 19:47:29 +0000 | commented question | Text2pcap LAPD for Q931 Call Flow DLT_LAPD combining to inboud/outbound direction give Network/user direction. ... DLT_LINUX_LAPD give only the s |
2024-02-21 05:31:25 +0000 | commented answer | Text2pcap ISDN Q931 HEX text2pcap -P <dissector> is supposed to automatically set the link layer type to WIRESHARK_UPPER_PDU, but it se |