[Bro] Bro DPD (Beginner)
zubair rafique
m_zubair_rafique at yahoo.com
Fri Apr 13 08:13:44 PDT 2012
Hi all,
I am new to Bro. I am trying to analyse the traffic trace in offline mode and detecting the outgoing http packets on non standard ports (POST request in TCP[PSH, ACK] packet).
I am using the following command line option:
sudo /usr/local/bro/bin/bro -f tcp -r mytrace.pcap /usr/local/bro/share/bro/base/frameworks/dpd/main.bro
There is no dpd log file generated by bro.
What I am missing here?.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ICSI.Berkeley.EDU/pipermail/bro/attachments/20120413/8ca030f0/attachment.html
More information about the Bro
mailing list