Wireshark Netlink Dissector

Requirements: C

Wireshark is a great tool for decoding and displaying sniffed network traffic. Netlink is a protocol used to configure Linux networking.

While Wireshark has a rudimentary support for decoding of the Netlink messages, it understands only a small part of the configuration data. We’re looking for an individual or a team who would enhance it. The nice thing about this project is that every bit counts! We’re not looking for a complete coverage.

This is a great opportunity to learn a few bits about the Linux kernel itself (and maybe more than just a few bits…). The Netlink protocol is largely undocumented, thus reading of the Linux kernel source code will become your second nature! Don’t worry, we’ll not let you drown.

Jiri Benc

Team:
Location: Brno
Brno RIG