Skip to content

diarmuidcwc/LuaDissectors

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

67 Commits
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
LXRS.lua
LXRS.lua
 
 
README.md
README.md
 
 
abm401.lua
abm401.lua
 
 
afdx.lua
afdx.lua
 
 
arinc_msgs.lua
arinc_msgs.lua
 
 
axon.lua
axon.lua
 
 
bcu_status.lua
bcu_status.lua
 
 
bcu_temperature.lua
bcu_temperature.lua
 
 
bit32_compat.lua
bit32_compat.lua
 
 
cbm.lua
cbm.lua
 
 
ch10.lua
ch10.lua
 
 
ch24.lua
ch24.lua
 
 
common.lua
common.lua
 
 
counter.lua
counter.lua
 
 
dem101.lua
dem101.lua
 
 
enc106.lua
enc106.lua
 
 
hsavionics.lua
hsavionics.lua
 
 
iena.lua
iena.lua
 
 
iena_subtypes.lua
iena_subtypes.lua
 
 
inet.lua
inet.lua
 
 
inetx.lua
inetx.lua
 
 
inetx_subdissectors.lua
inetx_subdissectors.lua
 
 
irig_ch10_file_parser.lua
irig_ch10_file_parser.lua
 
 
mat_101.lua
mat_101.lua
 
 
mem004.lua
mem004.lua
 
 
mil-std-1553.lua
mil-std-1553.lua
 
 
mil-std-1553_le.lua
mil-std-1553_le.lua
 
 
mpegts.lua
mpegts.lua
 
 
ndp.lua
ndp.lua
 
 
parse_arinc.lua
parse_arinc.lua
 
 
parser_aligned.lua
parser_aligned.lua
 
 
proglink.lua
proglink.lua
 
 
psu.lua
psu.lua
 
 
tmoip.lua
tmoip.lua
 
 
trfgen.lua
trfgen.lua
 
 
ubm_msgs.lua
ubm_msgs.lua
 
 

Repository files navigation

LuaDissectors

Lua based Wireshark dissecgfors (c) Diarmuid Collins dcollins@curtisswright.com

Install

Clone this repo into a your Wireshark Configuation Profile directory (Edit -> Configuration Profile -> Blue Link) and call the folder "plugins" Wireshark will pick up all the dissectors automatically

A number of protocols have heuristic checkers so that Wireshark will automatically check if a packet might be a specific format and will attempt to decom that packet.

If you want the dissectors to automatically run on particular ports, then you need to register that port with the dissector, eg port 5566 will receive inetx traffic

-- load the udp.port table
udp_table = DissectorTable.get("udp.port")
-- register our protocol to handle traffic on udp port 5566
udp_table:add(5566,inetx_generic_proto)

You can also dissect specific packets in Wireshark by right-clicking on a packet and selecting Decode As -> INETX

Creating your own dissectors

The included dissectors should give you a good idea on how to create custom dissectors. Generally you

  • Declare a new protocol using the Proto() syntax
  • Declare some new fields that are part of the protocol using ProtoField()
  • Write the dissector function, populating those fields with the payload. Step through each payload byte/word etc and assign it to a field

About

A bunch of lua dissectors for Wireshark that support iNet-X and IENA packet formats

Resources

Readme

License

GPL-2.0 license
Activity

Stars

16 stars

Watchers

3 watching

Forks

2 forks
Report repository

Releases

1 tags

Packages

 
 
 

Contributors

Languages