zubair rafique m_zubair_rafique at yahoo.com
Fri Apr 13 08:13:44 PDT 2012

Hi all,

I am new to Bro. I am trying to analyse the traffic trace in offline mode and detecting the outgoing http packets on non standard ports (POST request in TCP[PSH, ACK]  packet). 

I am using the following command line option:
 sudo /usr/local/bro/bin/bro -f tcp  -r mytrace.pcap   /usr/local/bro/share/bro/base/frameworks/dpd/main.bro
There is no dpd log file generated by bro.
What I am missing here?.
