ANNOUNCEMENT: Live Wireshark University & Allegro Packets online APAC Wireshark Training Session
April 17th, 2024 | 14:30-16:00 SGT (UTC+8) | Online
Wireshark logo

Wireshark-users: Re: [Wireshark-users] how to send email on event

Date Prev · Date Next · Thread Prev · Thread Next
Date Index · Thread Index · Other Months · All Mailing Lists
From: "Rob MacKenzie" <rmackenzie@xxxxxxx>
Date: Wed, 9 Apr 2008 11:40:22 -0400
No real support for that in Wireshark,

What you are describing would be trivial to code in python using pypcap
or something similar.  The Pcap library has wrappers in many languages,
you should be able to choose one you are familiar with (if any)

You could also write the data out to a pcap file, for analysis with
Wireshark after the notification is sent.

Rob MacKenzie
Test Software Developer

-----Original Message-----
From: wireshark-users-bounces@xxxxxxxxxxxxx
[mailto:wireshark-users-bounces@xxxxxxxxxxxxx] On Behalf Of Luis EG
Ontanon
Sent: April 9, 2008 11:30 AM
To: Community support list for Wireshark
Subject: Re: [Wireshark-users] how to send email on event

Hi,
Due to the way memory is managed in Wireshark (it keeps growing) it
does not make for a good monitoring tool (sooner or later WS will
crash due to lack of memory).

As far as Wireshark goes there's nothing that would allow you to
trigger on a given rate of anything. WS focuses on qualitative not
quantitative analysis.

The other problem is what is "high-broadcast" and how you describe it
in WS terms.

I think you are looking for a monitor/IDS type of program, more than a
 protocol analyzer.


On Wed, Apr 9, 2008 at 10:26 AM, Black_White <Black_White@xxxxxxxxxxxx>
wrote:
>
>
> i want to "catch" some behavior like high-broadcast, etc. and send an
email
> to myself, notify to this problems.
> is this possible?
>
> thanks.
>
>
> _______________________________________________
>  Wireshark-users mailing list
>  Wireshark-users@xxxxxxxxxxxxx
>  http://www.wireshark.org/mailman/listinfo/wireshark-users
>
>



--
This information is top security. When you have read it, destroy
yourself.
-- Marshall McLuhan
_______________________________________________
Wireshark-users mailing list
Wireshark-users@xxxxxxxxxxxxx
http://www.wireshark.org/mailman/listinfo/wireshark-users

---------------------------------------------------------------------
This transmission (including any attachments) may contain confidential information, privileged material (including material protected by the solicitor-client or other applicable privileges), or constitute non-public information. Any use of this information by anyone other than the intended recipient is prohibited. If you have received this transmission in error, please immediately reply to the sender and delete this information from your system. Use, dissemination, distribution, or reproduction of this transmission by unintended recipients is not authorized and may be unlawful.
Wireshark logo footer

© Wireshark Foundation · Privacy Policy

Facebook·Mastodon·Twitter·YouTube