User Tools
pcaps
Differences
This shows you the differences between two versions of the page.
| Next revision | Previous revision | ||
|
pcaps [2018/11/12 13:33] veera created |
pcaps [2019/04/13 12:23] (current) veera |
||
|---|---|---|---|
| Line 2: | Line 2: | ||
| Using Trisul NSM to analyze popular PCAP (Packet Capture) dumps made publicly available. | Using Trisul NSM to analyze popular PCAP (Packet Capture) dumps made publicly available. | ||
| + | |||
| + | ===== Merge PCAPs ===== | ||
| + | |||
| + | [[pcaps:ixmgtool|Using the ''trisul_ixmgtool'' to squish many thin PCAPs into a single thick PCAP file]] | ||
| ===== DEFCON 26 PCAP Dump ===== | ===== DEFCON 26 PCAP Dump ===== | ||
| - | The [[https://www.defcon.org/html/links/dc-ctf.html|DEFCON 26 CTF Competition]] PCAP dump using the Trisul NSM Docker image. This article explains how you can use the free ''trisulnsm/trisul6'' docker image to process the 50GB+ PCAP and also to view the results. | + | [[offline:defcon26ctf|Processing the DEFCON26 CTF Competition PCAP dump]]. This article explains how you can use the free //trisulnsm/trisul6// docker image to process the 50GB+ PCAP and to view the results. |
| + | Credits : [[https://www.defcon.org/html/links/dc-ctf.html|DEFCON 26 CTF Competition]] Thanks to the good folks at DEFCON26 for making the PCAP public. | ||
| ===== Offline analysis with the WRCCDC PCAP dump ===== | ===== Offline analysis with the WRCCDC PCAP dump ===== | ||
pcaps.1542029610.txt.gz · Last modified: 2018/11/12 13:33 by veera
Page Tools
Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
