[Bro] Applying Bro on offline captured traffic?
la_arshadi at yahoo.com
Sun Sep 13 05:27:19 PDT 2009
Is it possible to apply Bro on offline traffic? I have already some network traffic captured by tcpdump, can I feed this data to Bro & find the possible intrusions in that data? To be precise I must note that the captured traffic has been collected from an Ethernet network and consists of the packet headers & the whole payload.
I thank you in advance for your help & appreciate your prompt reply.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Bro