Wireshark 802.11 packet parsing procedure

Question

Can anyone explain the procedure involved in parsing a 802.11 packet using wireshark ? How does wireshark do this ?

Wireshark is able to dissect the 802.11 protocol (and other protocols, e.g. TCP) because it has code which "knows" the structure of that protocol. Can you be more specific about what you want to know ? — willyo, Feb 13 '17 at 17:57
I want to know the internal procedure / the idea behind the module `libpcap` used in parsing the 802.11 packets. @willyo — Jarvis, Feb 13 '17 at 18:13
libpcap is an "API for capturing network traffic". It does no parsing of packets. — willyo, Feb 13 '17 at 18:17
I think it does more than that : http://stackoverflow.com/questions/6111479/how-can-i-parse-an-ethernet-packet-using-libpcap @willyo — Jarvis, Feb 13 '17 at 18:19

score 0 · Accepted Answer · answered Feb 13 '17 at 18:19

0

libpcap is an "API for capturing network traffic". It does no parsing of packets. Wireshark uses libpcap to capture packets which are then dissected (parsed) by code in Wireshark.

answered Feb 13 '17 at 18:19

willyo

961
7
9

http://stackoverflow.com/questions/6111479/how-can-i-parse-an-ethernet-packet-using-libpcap – Jarvis Feb 13 '17 at 18:22

Wireshark 802.11 packet parsing procedure

1 Answers1