Chapter 7. Introduction

Table of Contents

7.1. Source overview
7.2. Coding Style
7.3. The GLib library

7.1. Source overview

Wireshark consists of the following major parts:

  • Packet dissection - in the /epan/dissectors and /plugins/epan/* directories
  • Capture file I/O - using Wireshark’s own wiretap library
  • Capture - using the libpcap and Npcap libraries, in dumpcap.c and the /capchild and _/caputils directories
  • User interface - using Qt and associated libraries
  • Utilities - miscellaneous helper code
  • Help - using an external web browser and text output