First time here? Check out the FAQ!
THIS IS A TEST INSTANCE. Feel free to ask and answer questions, but take care to avoid triggering too many notifications.
Ask Your Question
0

how to decode/decrypt udp packet data

it's in the subject name ^

wireshark_help_me's avatar
1
wireshark_help_me
asked 2021-01-02 15:23:28 +0000
edit flag offensive 0 remove flag close merge delete

Comments

add a comment see more comments

1 Answer

0

This all starts by knowing the protocol used to encode the UDP packet data. If the protocol is known to Wireshark you can use the 'Decode as' feature to direct the data towards it. If not known to Wireshark this could be added by programming a dissector for it.

Jaap's avatar
13.7k
Jaap
answered 2021-01-02 17:34:50 +0000
edit flag offensive 0 remove flag delete link
more

Comments

What's best way for programming a dissector?

wireshark_help_me's avatar wireshark_help_me (2021-01-03 02:19:05 +0000) edit
more
  • delete

to read this stuff: https://www.wireshark.org/docs/wsdg_h... anything you need to begin you will find there. In your wireshark folder there is also a tool which generates a skeleton code for you if you want to develop the dissector in c

Robin26689's avatar Robin26689 (2021-01-29 06:40:33 +0000) edit
more
  • delete
add a comment see more comments

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account. This space is reserved only for answers. If you would like to engage in a discussion, please instead post a comment under the question or an answer that you would like to discuss.

Add Answer