Sebek

[Richard Stevens <mail () richardstevens de>]

Hi, I'm setting up Sebek to do key-capturing. I have a rather old machine that 
does the sniffing in my Honeynet. I don't have another machine, I could 
dedicate to do Sebek sniffing. From what I read, Sebek can also analyze pcap 
files. Does it work reliable with the snort binary output? Or would you 
suggest to have snort running and also Sebek?

Thanks,


Richard