[Bro] Bro DPD (Beginner)
m_zubair_rafique at yahoo.com
Fri Apr 13 08:13:44 PDT 2012
I am new to Bro. I am trying to analyse the traffic trace in offline mode and detecting the outgoing http packets on non standard ports (POST request in TCP[PSH, ACK] packet).
I am using the following command line option:
sudo /usr/local/bro/bin/bro -f tcp -r mytrace.pcap /usr/local/bro/share/bro/base/frameworks/dpd/main.bro
There is no dpd log file generated by bro.
What I am missing here?.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Bro