[Bro] Off-line analysis

john mcnicholas jomcn at mail.com
Sun Dec 5 16:44:54 PST 2004


> Anyhow, what I really want to know is to do some ID attack ananlsys using
Bro.
> If you have experienced such things with Bro, please let me know.
> I get some tcpdump raw file, but it is not easy to handle Bro for offline
> test. 

I'll gladly try to help once I figure out my nagging issues.  Hopefully that
will be before Tuesday.

john




More information about the Bro mailing list