Skip to content
Extensions for Wireshark
Lua
Branch: master
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
README.md Adds flow_tap readme file Jun 24, 2018
README.sflow_tap.md
sflow_tap.lua (C) update Oct 30, 2018

README.md

wireshark-ntop

This repository contains open source extensions for Wireshark.

Here you can find:

  • The ntopdump extcap module: it can be used to open a PF_RING interface (also those that are not listed in ifconfig) or to extract traffic from a n2disk dumpset.
  • The remotentopdump extcap module: it can be used to capture traffic from a PF_RING interface on a remote machine, or extract traffic from a remote n2disk dumpset in Wireshark.
  • The ndpi plugin: it shows L7 protocol information provided by nDPI to complement internal protocol decoding. In order to do this, the ndpiReader application is used to provide Wireshark nDPI protocol dissection, and the ndpi plugin interprets nDPI information.
  • The sflow_tap Wireshark Lua plugin (in this folder): it shows summaries of sFlow agents flow and counter samples.
  • The Hardware Flow Offload Dissector dissector: it can dissect messages produced by the hardware flow offload engine when flows are computed in hardware.

Enjoy!

You can’t perform that action at this time.