Parsing Large Tcpdump Files In Python
I have a large tcpdump capture ( with > 1gb of data in a .dump file) which I would like to parse to get some statistics like the number of different IPs involved in sending traf
Solution 1:
Take a look at the dpkt module. It should be able to parse the pcap file on demand. Jon Oberheide has a great blog post showing how you can access the parsed representation of packets within a pcap packet capture file.
Post a Comment for "Parsing Large Tcpdump Files In Python"