通过Pipeline向Wireshark发送实时数据

汤米爱学习

已于 2024-08-30 13:47:42 修改

阅读量190

点赞数 2

分类专栏： BLE 文章标签： wireshark 测试工具网络

于 2024-08-30 13:47:34 首次发布

本文链接：https://blog.csdn.net/TommyLiTommy/article/details/141716196

版权

BLE 专栏收录该内容

8 篇文章 0 订阅

订阅专栏

下面的代码读取pcapng文件，并将数据通过Pipeline发送给Wireshark。nrf Sniffer即是通过这种方式进行BLE实时数据抓包显示的。

# Win32 Wireshark named pipes example
# Requires Python for Windows and the Python for Windows Extensions:
# http://www.python.org
# http://sourceforge.net/projects/pywin32/

# https://wiki.wireshark.org/CaptureSetup/Pipes

import win32pipe, win32file
import time
import subprocess

#open Wireshark, configure pipe interface and start capture (not mandatory, you can also do this manually)
wireshark_cmd=['D:\SoftwareInstallFolder\Wireshark\Wireshark.exe', r'-i\\.\pipe\wireshark','-k']
proc=subprocess.Popen(wireshark_cmd)

#create the named pipe \\.\pipe\wireshark
pipe = win32pipe.CreateNamedPipe(
    r'\\.\pipe\wireshark',
    win32pipe.PIPE_ACCESS_OUTBOUND,
    win32pipe.PIPE_TYPE_MESSAGE | win32pipe.PIPE_WAIT,
    1, 65536, 65536,
    300,
    None)

#connect to pipe
win32pipe.ConnectNamedPipe(pipe, None)

#open and read an arbitrary pcap file (file must in same folder than script)
cf = open(r'le_secure_connections.pcapng', 'rb')
data = cf.read()

#wait 2 second (not mandatory, but this let watching data coming trough the pipe)
time.sleep(2)

#send pcap data trough the pipe
win32file.WriteFile(pipe, data)

#then pcap data appears into wireshark