Snort mailing list archives
Re: Read unified2 file
From: Russ Combs <rcombs () sourcefire com>
Date: Tue, 20 Aug 2013 08:39:19 -0400
The Snort tarball includes utility programs that may do what you want: -- us2spewfoo will dump the contents in text form; and -- u2boat will create a pcap from the packets in a u2 log. On Tue, Aug 20, 2013 at 6:10 AM, phillip () bailey st <phillip () bailey st>wrote:
Hi Abid, you can check this https://pypi.python.org/pypi/unified2 Best, Phillip On 20/08/13 09:45, Abid Ayoub wrote:Hello, How can i read the file snort.u2.xxxx directly , without using Barnyard2?Regards Abid------------------------------------------------------------------------------Introducing Performance Central, a new site from SourceForge and AppDynamics. Performance Central is your source for news, insights, analysis and resources for efficient Application Performance Management. Visit us today!http://pubads.g.doubleclick.net/gampad/clk?id=48897511&iu=/4140/ostg.clktrk_______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users Please visit http://blog.snort.org to stay current on all the latestSnort news!------------------------------------------------------------------------------ Introducing Performance Central, a new site from SourceForge and AppDynamics. Performance Central is your source for news, insights, analysis and resources for efficient Application Performance Management. Visit us today! http://pubads.g.doubleclick.net/gampad/clk?id=48897511&iu=/4140/ostg.clktrk _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users Please visit http://blog.snort.org to stay current on all the latest Snort news!
------------------------------------------------------------------------------ Introducing Performance Central, a new site from SourceForge and AppDynamics. Performance Central is your source for news, insights, analysis and resources for efficient Application Performance Management. Visit us today! http://pubads.g.doubleclick.net/gampad/clk?id=48897511&iu=/4140/ostg.clktrk
_______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users Please visit http://blog.snort.org to stay current on all the latest Snort news!
Current thread:
- Read unified2 file Abid Ayoub (Aug 20)
- Re: Read unified2 file phillip () bailey st (Aug 20)
- Re: Read unified2 file Russ Combs (Aug 20)
- Re: Read unified2 file phillip () bailey st (Aug 20)