Snort mailing list archives
extracting tcpdump data
From: rmulyadi () email arizona edu
Date: Tue, 31 Dec 2002 12:05:21 -0700
I am trying to use snort to preprocess tcpdump file. For the tcp packets, I wanna be able to extract the connection level information about the network traffic (e.g. start time, duration, participating hosts and ports, etc.). Any comments or sample rules are very appreciated. Thanks, Rusma ------------------------------------------------------- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- extracting tcpdump data rmulyadi (Dec 31)