Ask Your Question

Is there an SDK to write dissectors?

asked 2020-02-17 11:16:47 +0000

Assarbad gravatar image


from what I was able to figure out from the documentation I'd have to build WireShark locally first in order to get import libraries and such.

Is there an SDK of sorts which I have missed when looking for one? What I am looking for is basically the headers and import libraries for MSVC to build my own dissectors.

Does this exist?


edit retag flag offensive close merge delete

1 Answer

Sort by » oldest newest most voted

answered 2020-02-17 11:26:14 +0000

grahamb gravatar image

Nope. You must install a full dev. environment as per the Developers Guide to build C based dissectors.

Pro Tip #1: Use a VM to contain all the Wireshark build bits separate from the rest of your machine.

edit flag offensive delete link more


Thanks for the swift response (unfortunately I can't upvote it, because it requires 15 rep 🤔).

Assarbad gravatar imageAssarbad ( 2020-02-17 11:32:23 +0000 )edit

We don't generally upvote, but accept the answer by clicking the checkmark to the left of it (if it has answered your question).

grahamb gravatar imagegrahamb ( 2020-02-17 12:29:18 +0000 )edit

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Question Tools

1 follower


Asked: 2020-02-17 11:16:47 +0000

Seen: 190 times

Last updated: Feb 17 '20