Firewall Wizards mailing list archives

Re: Where can I find file format layouts for various trace files?

From: John McDermott <jjm () jkintl com>
Date: Tue, 07 Mar 2000 13:28:53 -0700

Check the source for ethereal (www.zing.org).  Ethereal reads and IIRC
writes Sniffer files; it's open source and free.  Ethereal might even
help you do the looking you want to do...

--john

Bill_Royds () pch gc ca wrote:


 Does anyone know where there is description of the file layout for various
trace file formats, in particular the Sniffer .enc files produced by the NAI
(formerly Network General) Sniffer and by Network Ice?
I want to make a perl module for looking at traces but the present Perl  modules
are for gathering data not analyzing it.


-- 
John McDermott jjm () jkintl com
Writer and Computer Consultant
J-K International, Ltd.
+1 505/377-6293 - V
+1 505/377-6313 - F

Current thread:

Where can I find file format layouts for various trace files? Bill_Royds (Mar 07)
- Re: Where can I find file format layouts for various trace files? John McDermott (Mar 08)
- <Possible follow-ups>
- RE: Where can I find file format layouts for various trace files? Irwin Lazar (Mar 12)