Wireshark-dev: Re: [Wireshark-dev] Enrich tshark data
Date Index · Thread Index · Other Months · All Mailing Lists
Date Prev · Date Next · Thread Prev · Thread Next
From: Paul Offord <Paul.Offord@xxxxxxxxxxxx>
Date: Fri, 8 Sep 2017 15:13:13 +0000

Hi Conall,

 

The best place to ask HOW TO type questions is on http://ask.wireshark.org as a great range of users and developers hangout there.  If you want to write some Wireshakr code to do what you want – well you’ve come to the right place 😊

 

Best regards…Paul

 

From: Wireshark-dev [mailto:wireshark-dev-bounces@xxxxxxxxxxxxx] On Behalf Of Conall Prendergast
Sent: 08 September 2017 14:21
To: wireshark-dev@xxxxxxxxxxxxx
Subject: [Wireshark-dev] Enrich tshark data

 

Hi All,

 

Wireshark has the ability to enrich some of the numeric values it sees. For example, if is sees a http status code of 200, it might print "OK" beside it, because HTTP 200 means OK (This is just a guess, Im not sure what it does for HTTP status codes).

 

Is it possible to add this kind of enrichment to tshark's json output? 

 

Regards,

Conall

 

3 Custom House Plaza | IFSC | Dublin | D01 VY76 | Ireland | Tel.  +353 (1) 291 0138 | Fax. +353 (1) 291 0131 

Asia Office - Suite 12.03, Level 12, Centrepoint North | Mid Valley City | 59200 Kuala Lumpur | Malaysia | Tel. +603 2201 3375 

The information contained in this e-mail transmission is confidential and may be privileged. It is for the intended recipient only. Any views or opinions present are solely those of the author. If you are not the intended recipient you must not use, disclose, distribute, copy, print or rely on this e-mail. If you have received this e-mail in error, please immediately notify us by telephone at 353-1-2910138 or e-mail mailadmin@xxxxxxxx and delete the email from your system


______________________________________________________________________

This message contains confidential information and is intended only for the individual named. If you are not the named addressee you should not disseminate, distribute or copy this e-mail. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system.

Any views or opinions expressed are solely those of the author and do not necessarily represent those of Advance Seven Ltd. E-mail transmission cannot be guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete, or contain viruses. The sender therefore does not accept liability for any errors or omissions in the contents of this message, which arise as a result of e-mail transmission.

Advance Seven Ltd. Registered in England & Wales numbered 2373877 at Endeavour House, Coopers End Lane, Stansted, Essex CM24 1SJ

______________________________________________________________________
This email has been scanned by the Symantec Email Security.cloud service.
For more information please visit http://www.symanteccloud.com
______________________________________________________________________