 | 1 | initial version |
A lua post-dissector is quick way to experiment and get fields added to the tree.
From there the dissector can be modified to be called from another dissector such as UDP or TCP.
And then if you want better performance and to contribute to the Wireshark code base, move it to C.
EASYPOST.lua available from the Wireshark Wiki lua page just drops in and adds a protocol and field to the tree as a starting point.
There are several lua Sharkfest presentations.
I did one at SF22US (Kansas City) and SF23US (San Diego) that while not as detailed as earlier ones, reflect the current state of lua in Wireshark.
| | 2 | No.2 Revision |
A lua post-dissector is quick way to experiment and get fields added to the tree.
From there the dissector can be modified to be called from another dissector such as UDP or TCP.
And then if you want better performance and to contribute to the Wireshark code base, move it to C.
EASYPOST.lua available from the Wireshark Wiki lua page just drops in and adds a protocol and field to the tree as a starting point.
There are several lua Sharkfest presentations.
I did one at SF22US (Kansas City) and SF23US (San Diego) that while not as detailed as earlier ones, reflect the current state of lua in Wireshark.
The dissector tutorial script covers a lot of what can be done in Lua.
Wiki pages Lua/Examples and Contrib good references also.
| | 3 | No.3 Revision |
A lua post-dissector is quick way to experiment and get fields added to the tree.
From there the dissector can be modified to be called from another dissector such as UDP or TCP.
And then if you want better performance and to contribute to the Wireshark code base, move it to C.
EASYPOST.lua available from the Wireshark Wiki lua page just drops in and adds a protocol and field to the tree as a starting point.
There are several lua Sharkfest presentations.
I did one at SF22US (Kansas City) and SF23US (San Diego) that while not as detailed as earlier ones, reflect the current state of lua in Wireshark.
The dissector tutorial script covers a lot of what can be done in Lua.
Wiki pages Lua/Examples and Contrib good references also.
And the Lua section of the WSDG Chapter 10. Lua Support in Wireshark
