1. Copyright notice
The Wireshark can use Lua scripts to parse user-defined protocols. In addition, the Lua scripts in the Wireshark support many other powerful functions.
For the above reasons, I have translated chapter 11 of the Wireshark official document, that is, Chapter 11 of the Wireshark official document, into the Wireshark Official Document. Authors will be named 11.* in their titles.
The original intention of the translation of this document is to provide help for students with the same needs, so you are welcome to reprint it, just attach the author’s name and the link to the original text.
If you have any problems using the document, please contact the author at [email protected];
2. Expression norms
This chapter deals with the following specifications for how functions behave in code:
- Class.function() represents a method of a Class that takes no arguments;
- Class.function(a) represents a method that requires a Class to pass in an argument;
- Class.function(…) A method that represents a class that can pass in a number of variable arguments
- Class :method() represents an instance method of the class. Note that the C of class is lowercase, indicating that it is an instance of the class.
- Class. Prop represents a property of an instance of a class;
3. Document index
[Wireshark] 11.1. Save the captured file
Obtaining parsed Data
[Wireshark] 11.3. GUI support
[Wireshark] 11.4. Post – Dissection Packet Analysis
[Wireshark] 11.5. Obtaining Data Packets
[Wireshark] 11.2. Functions For New Protocols And Dissectors
[Wireshark] 11.7. Add information to the parse tree
[Wireshark] 11.8. Method for processing data in packets