Wireshark is a great tool and sometimes I wonder if I use it more often than a word processor. It’s great to analyze things manually in real time or from saved packet captures after the fact. On top of that wouldn’t it be great if you could analyze network packets in your own code and act when a defined set of conditions are met? For a long time I thought that this would be a lot of hassle to pull off but it’s actually a lot easier than I thought.
Continue reading Pyshark to Analyze Wireshark Decodes With Python