2024-04-19 05:43:53 +0000 | answered a question | Secure PCAP-over-IP with Wireshark? Like with socat? I am curious to whether Wireshark, natively, or by combining with additional tools, can support reading PCAP-over-IP |
2024-04-19 05:43:53 +0000 | received badge | ● Rapid Responder (source) |
2024-04-18 17:57:02 +0000 | edited question | Is there any capture filter available to capture only beacons and action frames that contain Channel Switch Announcement frames in them? Is there any capture filter available to capture only beacons and action frames that contains Channel Switch Announcemen |
2024-04-17 04:25:57 +0000 | commented answer | mixing c/c++ to write a plugin With proper use of extern "C" it may be possible to write it completely in C++ (if C++ compilers turn extern "C" functio |
2024-04-10 21:55:49 +0000 | received badge | ● Rapid Responder (source) |
2024-04-10 21:55:49 +0000 | answered a question | Tshark - Can I use ring buffer with text files Do you know a way of doing it with tshark ? Text dissections are written by TShark to the standard output, so there |
2024-04-10 21:52:37 +0000 | commented question | How to add a dissector below USB/FTDI? The data appears "in" the FTDI messages broken out by existing Wireshark dissectors so could someone point me at an e |
2024-04-01 19:24:06 +0000 | edited question | Dark mode text colour issue in filter text box Dark mode text colour issue Hello Wireshark users, Wireshark developers. I am using Wireshark on Garuda (an Arch-based |
2024-03-31 03:17:11 +0000 | edited question | Install Wireshark silently and capture traffic when the user logs in Install Wireshark silently and capture logs Hello, I need to capture a Wireshark logs when the user login to the first |
2024-03-24 23:04:49 +0000 | answered a question | rpcaps or remote pcap over TLS support in Wireshark for Windows? Will Wireshark on Windows ever have working TLS/rpcaps support to match rpcapd deployments that do support TLS? If |
2024-03-24 23:04:49 +0000 | received badge | ● Rapid Responder (source) |
2024-03-24 21:16:28 +0000 | commented answer | How to enable rpcap support in linux version Is it possible for tshark or dumpcap to get the --enable-remote status from libpcap so that it could be displayed in |
2024-03-24 01:58:23 +0000 | answered a question | Does Wireshark on Windows rely on Npcap and Winpap for all remote pcap functionality? is that statement true or a mistaken assumption? It is 100% mistaken. I've added comments to that GitHub issue poi |
2024-03-24 01:58:23 +0000 | received badge | ● Rapid Responder (source) |
2024-03-22 18:25:45 +0000 | edited answer | rpcap interface protocol syntax for non-null authentication? However, it's not clear to me how the underlying mechanism in the GUI route operates as the resulting interface strin |
2024-03-22 06:35:40 +0000 | answered a question | rpcap interface protocol syntax for non-null authentication? However, it's not clear to me how the underlying mechanism in the GUI route operates as the resulting interface strin |
2024-03-22 06:35:40 +0000 | received badge | ● Rapid Responder (source) |
2024-03-16 06:40:51 +0000 | commented answer | pcap: network type 285 unknown or unsupported - Unable to open Marvell DSA tagged pcap file Could the table be moved from the .c to a .h? Or either to libwireshark or libwsutil. |
2024-03-16 02:13:37 +0000 | commented answer | pcap: network type 285 unknown or unsupported - Unable to open Marvell DSA tagged pcap file Could/should the description be included in the error message? Not all programs that use libpcap include dissectors |
2024-03-16 00:14:23 +0000 | answered a question | pcap: network type 285 unknown or unsupported - Unable to open Marvell DSA tagged pcap file Do Iassume correctly that Wireshark does not support netwrok type 285 Yes. Is there any plan for support? Didn' |
2024-03-16 00:14:23 +0000 | received badge | ● Rapid Responder (source) |
2024-03-13 23:29:37 +0000 | commented question | Can we do x11 with wireshark What do you mean by "configure x11"? The Windows and macOS versions of Wireshark don't use X11 for their user interface |
2024-03-10 23:45:03 +0000 | commented answer | Malformed packets on Linux Wireshark 4.2.2 but not Mac Wireshark 4.2.3 for the same .pcap I assume version 4.2.3 will be available on the apt package manager in the near future? That's up to the maintainer |
2024-03-10 23:43:24 +0000 | edited question | Malformed packets on Linux Wireshark 4.2.2 but not Mac Wireshark 4.2.3 for the same .pcap Malformed packets on Linux but not Mac for the same .pcap I shared a .pcap with my colleague who is running Wireshark 4. |
2024-03-08 20:11:50 +0000 | commented answer | Unable to open PCAP file On most UN*Xes the command file is available that can help identifying the true type (by contents). On most UN*Xes ther |
2024-03-08 19:55:31 +0000 | commented question | "unable to set channel or offset" when switching WiFi channels When I switch from channel 1 to another channel (e.g 2 or 124 doesnt matter) I get the message ""unable to ste channe |
2024-03-08 19:42:21 +0000 | commented answer | We are looking for commands line option in tshark to enable Initialization Vector from Ignore protection bit list in wireshark GUI. Unfortunately, the documentation on preferences isn't very good, where "isn't very good" means "close to nonexistent"; I |
2024-03-08 19:36:21 +0000 | edited question | We are looking for commands line option in tshark to enable Initialization Vector from Ignore protection bit list in wireshark GUI. Actually we are looking for commands line option in tshark to enable Initialization Vector from Ignore protection bit l |
2024-03-07 05:44:59 +0000 | commented answer | Why wireshark failed to decode prelogin message in tds protocol That doesn't fix the problem for Wireshark. If Wireshark isn't showing the tds.prelogin.option.traceid field, please re |
2024-03-06 20:22:07 +0000 | answered a question | LNK2001 error building WS with custom dissector That company's plugin is badly-designed. It attempts to register libwiretap routines in the dissector registration routi |
2024-03-06 20:22:07 +0000 | received badge | ● Rapid Responder (source) |
2024-03-06 20:02:56 +0000 | commented question | LNK2001 error building WS with custom dissector And there's the error, converted from small text, some of which is red-on-black, to regular text for the benefit of olde |
2024-03-06 20:01:02 +0000 | commented question | LNK2001 error building WS with custom dissector And there's the error, converted from small text, some of which is red-on-black, to regular text for the benefit of olde |
2024-03-06 20:00:38 +0000 | commented question | LNK2001 error building WS with custom dissector And there's the error, converted from small text, some of which is red-on-black, to regular text for the benefit of olde |
2024-03-06 19:59:06 +0000 | commented question | LNK2001 error building WS with custom dissector And there's the error, converted from small text, some of which is red-on-black, to regular text for the benefit of olde |
2024-03-01 20:37:03 +0000 | edited question | Why can't I see network adapters, or capture on them, after installing Wireshark on Ubuntu? Accessing hardware network interfaces I use Wireshark on Ubuntu 22.04 . First of all, it was not exactly clear which co |
2024-03-01 20:36:03 +0000 | answered a question | Why can't I see network adapters, or capture on them, after installing Wireshark on Ubuntu? What you should do is: install with "non-superusers should be allowed to capture from network interfaces"; run sudo gp |
2024-03-01 20:36:03 +0000 | received badge | ● Rapid Responder (source) |
2024-02-29 08:25:30 +0000 | commented question | How To Fix Wireshark Time-It is the wrong time? My time is wrong on Wireshark, right on my computer. Is Wireshark running on your computer, and are you using Wires |
2024-02-23 19:18:23 +0000 | edited question | Network interface doesn't show up on Linux Intel AX210 wifi support on Linux Just got a new laptop with a AX210 wifi card and although it works under Linux ( Linux |
2024-02-21 19:47:29 +0000 | commented question | Text2pcap LAPD for Q931 Call Flow DLT_LAPD combining to inboud/outbound direction give Network/user direction. ... DLT_LINUX_LAPD give only the s |
2024-02-21 05:31:25 +0000 | commented answer | Text2pcap ISDN Q931 HEX text2pcap -P <dissector> is supposed to automatically set the link layer type to WIRESHARK_UPPER_PDU, but it se |
2024-02-21 02:17:08 +0000 | commented answer | Text2pcap ISDN Q931 HEX Perhaps text2pcap should add support for LINKTYPE_WIRESHARK_UPPER_PDU. |
2024-02-20 04:25:01 +0000 | commented question | Why there is no WLAN packet shown from capture? Did you capture in monitor mode? |
2024-02-20 03:12:42 +0000 | commented question | How to install older wireshark and tshark version in ubuntu linux What are those filter expressions, and what you mean by "deprecated"? Note that, normally, "deprecated" means "you can |
2024-02-20 03:12:14 +0000 | commented question | How to install older wireshark and tshark version in ubuntu linux What are those filter expressions, and what does "deprecated" mean? Note that "deprecated" means "you can use them, but |
2024-02-17 07:30:02 +0000 | received badge | ● Rapid Responder (source) |
2024-02-17 07:30:02 +0000 | answered a question | M2 Max MacBook Pro 96G RAM vs Win11 Dell Inspiron i7 16G RAM On macOS, Activity Montior can get a sample of what a program is doing - select the program in Activity Montior and, fro |
2024-02-17 07:04:45 +0000 | commented question | M2 Max MacBook Pro 96G RAM vs Win11 Dell Inspiron i7 16G RAM Windows has some DLL's and executables present that Mac does not. The macOS app bundle for Wireshark stores executa |
2024-02-14 20:47:54 +0000 | answered a question | Wireshark and nftables I am unable to add 'bluetooth-monitor' as an interface to nftables even to test. Not all of the entities on which y |