[Bro] How BRO's in-built scripts are invoked in a flow one by one(one file after other file)
Aniket Savanand
aniketpsavanand at gmail.com
Sun Dec 6 20:57:24 PST 2015
Thanks a lot.
I will look into these files.
Thanks
Aniket Savanand
On Sun, Dec 6, 2015 at 8:51 PM, Clark, Gilbert <gc355804 at ohio.edu> wrote:
> In addition to what Anthony suggests:
>
> Bro has an option to trace execution and write the results to a file: I
> think it's '-T' or something along those lines. The trace file generated
> by running bro with this option can show you which script functions were
> called and in which order they were called ... but this option generates a
> *lot* of output, and should therefore only be used offline and (probably)
> with a relatively small capture file.
>
> There's a benchmark script that ships with bro that also shows an example
> of incrementally running bro with 1 script loaded, 2 scripts loaded, etc to
> see how each script affects bro's runtime:
> https://github.com/bro/bro-aux/blob/master/devel-tools/cpu-bench-with-trace
>
> Also, maybe try taking a look at try.bro.org: it's a pretty nice way to
> play with bro and become familiar with how things work.
>
> Cheers,
> Gilbert
>
--
*Regards, *
*Aniket Savanand,*
*MS Software Engineering 2016,*
*San Jose State University, CA*
*Email <aniket.savanand at sjsu.edu> **Cellphone- +1-669-226-8162*
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ICSI.Berkeley.EDU/pipermail/bro/attachments/20151206/1e43a87a/attachment-0001.html
More information about the Bro
mailing list