[Bro] Applying Bro on offline captured traffic?
Laleh Arshadi
la_arshadi at yahoo.com
Sun Sep 13 05:27:19 PDT 2009
Dear Members,
Is it possible to apply Bro on offline traffic? I have already some network traffic captured by tcpdump, can I feed this data to Bro & find the possible intrusions in that data? To be precise I must note that the captured traffic has been collected from an Ethernet network and consists of the packet headers & the whole payload.
I thank you in advance for your help & appreciate your prompt reply.
Best Regards
Laleh Arshadi
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ICSI.Berkeley.EDU/pipermail/bro/attachments/20090913/b83c23f8/attachment.html
More information about the Bro
mailing list