Re: Enrich tshark data

[Paul Offord <Paul.Offord () advance7 com>]

Hi Conall,

The best place to ask HOW TO type questions is on http://ask.wireshark.org as a great range of users and developers 
hangout there.  If you want to write some Wireshakr code to do what you want – well you’ve come to the right place 😊

Best regards…Paul

From: Wireshark-dev [mailto:wireshark-dev-bounces () wireshark org] On Behalf Of Conall Prendergast
Sent: 08 September 2017 14:21
To: wireshark-dev () wireshark org
Subject: [Wireshark-dev] Enrich tshark data

Hi All,

Wireshark has the ability to enrich some of the numeric values it sees. For example, if is sees a http status code of 
200, it might print "OK" beside it, because HTTP 200 means OK (This is just a guess, Im not sure what it does for HTTP 
status codes).

Is it possible to add this kind of enrichment to tshark's json output?

Regards,
Conall


3 Custom House Plaza | IFSC | Dublin | D01 VY76 | Ireland | Tel.  +353 (1) 291 0138 | Fax. +353 (1) 291 0131

Asia Office - Suite 12.03, Level 12, Centrepoint North | Mid Valley City | 59200 Kuala Lumpur | Malaysia | Tel. +603 
2201 3375

[http://www.anam.com/email/footer_26062017.png]The information contained in this e-mail transmission is confidential 
and may be privileged. It is for the intended recipient only. Any views or opinions present are solely those of the 
author. If you are not the intended recipient you must not use, disclose, distribute, copy, print or rely on this 
e-mail. If you have received this e-mail in error, please immediately notify us by telephone at 353-1-2910138 or e-mail 
mailadmin () anam com<mailto:mailadmin () anam com> and delete the email from your system

______________________________________________________________________

This message contains confidential information and is intended only for the individual named. If you are not the named 
addressee you should not disseminate, distribute or copy this e-mail. Please notify the sender immediately by e-mail if 
you have received this e-mail by mistake and delete this e-mail from your system.

Any views or opinions expressed are solely those of the author and do not necessarily represent those of Advance Seven 
Ltd. E-mail transmission cannot be guaranteed to be secure or error-free as information could be intercepted, 
corrupted, lost, destroyed, arrive late or incomplete, or contain viruses. The sender therefore does not accept 
liability for any errors or omissions in the contents of this message, which arise as a result of e-mail transmission.

Advance Seven Ltd. Registered in England & Wales numbered 2373877 at Endeavour House, Coopers End Lane, Stansted, Essex 
CM24 1SJ

______________________________________________________________________
This email has been scanned by the Symantec Email Security.cloud service.
For more information please visit http://www.symanteccloud.com
______________________________________________________________________

___________________________________________________________________________
Sent via:    Wireshark-dev mailing list <wireshark-dev () wireshark org>
Archives:    https://www.wireshark.org/lists/wireshark-dev
Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-dev
             mailto:wireshark-dev-request () wireshark org?subject=unsubscribe