i'am working on a project, that is "dissecting capture packets using libwireshark"
my code successfully dissected till tcp header but it cant dissect further the payload..the underlying protocol.
how to do that.. any help!
asked 30 Jan '12, 03:38
Register you dissector with the TCP dissectors port table, like do:
dissector_add_uint("tcp.port", currentPort, PROTOABBREV_handle);
Or, if there's no port relation, register your dissector as heuristic dissector, like so:
heur_dissector_add("tcp", dissect_PROTOABBREV, proto_PROTOABBREV);
answered 30 Jan '12, 03:55