Hello,
I have a use-case where one program sniffs traffic, extracts the payload, and processes it. I want to be able to identify the protocol in use using the protocol dissectors but I don't want to write the packets to a file. A few possibilities I've considered are
1. Use epan (I believe) in my own code to perform the parsing/identification.
2. Write the packet to a socket that tshark is listening to and get the protocol information using IPC.
Any suggestions or advice on this front is greatly appreciated.