Re: [Wireshark-dev] Siemens S7Comm-Plus protocol support

> > > You could: > > go to the code tab at > https://sourceforge.net/p/s7commwireshark/code/HEAD/tree/; > > clone the repository; > > download the Wireshark 3.4.7 source, so the Wireshark header files > are available, if you haven't done so already; > > run the tools

Re: [Wireshark-dev] re-load IKEv2 / ESP UAT during wireshark gui runtime

I have nothing against a text keylog file approach, but FWIW with ESP UAT (or the run-time function I mentioned), you can configure the key in hex prefixed with 0x. Martin On Thu, Aug 19, 2021 at 6:37 PM Nicolás Alvarez wrote: > El jue, 19 de ago. de 2021 a la(s) 08:30, Harald Welte > (lafo...@

Re: [Wireshark-dev] re-load IKEv2 / ESP UAT during wireshark gui runtime

El jue, 19 de ago. de 2021 a la(s) 08:30, Harald Welte (lafo...@gnumonks.org) escribió: > > Sorry if this has been covered before, but I could only find several > locations online where the question has been asked, but no response anywhere: > > Is there already a mechanism by which a running wiresh

Re: [Wireshark-dev] Siemens S7Comm-Plus protocol support

Am 19.08.2021 um 09:52 schrieb Guy Harris: > Thomas, is there any reason not to incorporate this into the regular > Wireshark release? I'd mean you wouldn't have to build Windows > binaries and offer them for releases that include it, and would make > it easier for non-Windows users to analyze th

Re: [Wireshark-dev] re-load IKEv2 / ESP UAT during wireshark gui runtime

Hi Harald, I realise this may not be convenient for you, but what I have done a couple of times is to have a private dissector parse logging frames in the same capture that contain info about new SAs being created. With all of the relevant information in hand, the dissector then calls esp_sa_reco

Re: [Wireshark-dev] ISO 7816 vs GSM SIM dissector

Hi Pascal and Stig, Thus wrote Pascal Quantin (pas...@wireshark.org): > Le mer. 18 août 2021 à 13:51, Stig Bjørlykke a écrit : > > Hi, > > Does anyone know the difference between the ISO 7816 dissector and the GSM > > SIM dissector? amongst other things, the iso7816 dissector includes the ATR

[Wireshark-dev] re-load IKEv2 / ESP UAT during wireshark gui runtime

Sorry if this has been covered before, but I could only find several locations online where the question has been asked, but no response anywhere: Is there already a mechanism by which a running wireshark can be triggered to re-load UAT tables at runtime, in my specific use case those for IKEv2 an

Re: [Wireshark-dev] Siemens S7Comm-Plus protocol support

On Aug 18, 2021, at 11:16 PM, Brett D. Rasmussen via Wireshark-dev wrote: > I have a question regarding support for the Siemens "s7comm-plus" protocol. > > I'm currently running Wireshark 3.4.7 on a Mac system. (3.4.7 is the latest > version on the Mac) It's the latest version everywhere, a