update the requirements: tshark version

0x4D31 / fatt

FATT /fingerprintAllTheThings - a pyshark based script for extracting network metadata and fingerprints from pcap files and live network traffic

BSD 3-Clause "New" or "Revised" License

641 stars 92 forks source link

update the requirements: tshark version #2

Closed 0x4D31 closed 5 years ago

0x4D31 commented 5 years ago

ssl renamed to tls from tshark/wireshark v2.9.0 https://github.com/wireshark/wireshark/commit/cd95e197ca78feb1e83ec737b87ada0a1dd57d10

0x4D31 commented 5 years ago

Done. If you need to use older tshark versions (< 2.9.0), you should rename everything 'tls' to 'ssl' in the script. Note that TLS should be changed to SSL (uppercase) in the following section of code:

elif proto == 'TLS' and ('tls' in self.fingerprint or self.fingerprint == 'all'):

0x4D31 commented 5 years ago

Separate branch for old-tshark: https://github.com/0x4D31/fatt/tree/old-tshark