Ok, in the documentation of winpcap I found the function pcap_dump_open(). It opens a file for another function ...loop() with captures packet and saves it in this file.
But I have to open the file and have to write my data in this file.. not captureing it with this loop() function. It is possible to insert my data into a struct and then save this structure into a .pcap file? I need the "low-level" description of this file format. It should be possible to implement an own easy function to save the data. ________________________________________ Von: [email protected] [[email protected]] im Auftrag von Gregory Seidman [[email protected]] Gesendet: Montag, 11. Oktober 2010 13:53 An: [email protected] Betreff: Re: [Wireshark-dev] saving data in pcap file format On Mon, Oct 11, 2010 at 01:35:17PM +0200, Lange Jan-Erik wrote: > Hello, > > I want to analyze an usb datastream with wireshark. To record the data I use > a proprietary development that uses libusb to receive the data. > > Ok, to analyze the data I want to use wireshark. Is there a way to save the > recorded data as a *.pcap File? Is there a library I could use to write the > data into a file? Can you an recommend overview about this file format? > > When I have this pcap file I would create a dissector plugin to dissect the > data according to my protocoll. You are looking for libpcap (or WinPcap on Windows). Works like a charm, and has lots of language bindings (I've used it with Ruby). > Best regards > Jan --Greg ___________________________________________________________________________ Sent via: Wireshark-dev mailing list <[email protected]> Archives: http://www.wireshark.org/lists/wireshark-dev Unsubscribe: https://wireshark.org/mailman/options/wireshark-dev mailto:[email protected]?subject=unsubscribe ___________________________________________________________________________ Sent via: Wireshark-dev mailing list <[email protected]> Archives: http://www.wireshark.org/lists/wireshark-dev Unsubscribe: https://wireshark.org/mailman/options/wireshark-dev mailto:[email protected]?subject=unsubscribe
