Hello! I have a server for storing the pcap-files (few hundreds) of sniffered interfaces. And I'd like to extract needed data from this pcap-files. Just for example: I have 200 pcap-files 50 MB each. It's needed to search all ICMP-pings from IP1 to IP2 and answeres. Currently I learn the possibility of using of script-languages and tshark-commands. May be other ways exists? What are the variants how I can do it? asked 05 May '14, 02:56  factorial |
One Answer:
that's basically the only option to do it in an automatic way, besides reading the pcap file directly with your own software. So, go ahead with that approach. Regards answered 05 May '14, 05:37  Kurt Knochner ♦ |
