Ask Your Question

Mentor or Guide needed for Python code to run extcap programs outside Wireshark

asked 2020-08-13 16:18:56 +0000

pycoder2000 gravatar image

updated 2020-08-16 18:45:18 +0000

Guy Harris gravatar image

Me and my team are going to create an ExtCap library for python as part of our contribution to the Open Source Community. But we are facing a lot of problem understanding the pillars on which ExtCap stands on as we are only 3rd Year UG CSE students. Is there anybody who can resolve our doubts or guide us through the basics of network capturing. Thank you. This is the link for the idea:

edit retag flag offensive close merge delete


Note: in this case, an "ExtCap library for python" means "code that allows Python programs to run extcap programs, independently of Wireshark, to allow them to capture traffic and respond to it". Think of it as a Python equivalent of libpcap, but for extcap programs, performing a similar function to the code in Wireshark that runs extcap programs.

Guy Harris gravatar imageGuy Harris ( 2020-08-16 18:47:22 +0000 )edit

1 Answer

Sort by ยป oldest newest most voted

answered 2020-08-13 16:56:37 +0000

grahamb gravatar image

Extcap is an interface specification that allows Wireshark to configure and control an external utility, a script or a binary) to produce a pcap stream over a pipe that represents data captured from some source other than a "standard" network interface.

The documentation includes the extcap man page and code in the Wireshark source code tree which includes the script the extcap headers; extcap.c and extcap.h and the files in the extcap directory.

edit flag offensive delete link more


Thank you so much! This was very helpful.

pycoder2000 gravatar imagepycoder2000 ( 2020-08-13 17:05:47 +0000 )edit

@pycoder2000 If an answer has solved your issue, please accept it for the benefit of others that may have the same query by clicking the checkmark icon to the left of the answer.

grahamb gravatar imagegrahamb ( 2020-08-14 07:40:55 +0000 )edit

See also chapter 8.2 "Extcap: Developer's Guide" in the Wireshark Developer's Guide, which shows examples of the command-line arguments, and standard output, that an extcap program/script should have.

Guy Harris gravatar imageGuy Harris ( 2020-08-15 05:22:16 +0000 )edit

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Question Tools


Asked: 2020-08-13 16:18:56 +0000

Seen: 287 times

Last updated: Aug 16 '20