PaulDotCom mailing list archives
Large PCAP Analysis.
From: arch3angel at gmail.com (Robert Miller)
Date: Tue, 12 Jan 2010 00:56:31 -0500
Depending on what you need to look for the professional version of NetWitness offers the ability to analysis larger pcap and cap files. Personally I use the free version and split the pcap/cap files into 1-2 GB chunks and run through numerous tools depending on my needs. The tool I have use most of the time to split the files was the same as Adrian mentioned - splitpcap - Robert (arch3angel) On 1/11/2010 1:21 PM, Marc-Andre Meloche wrote:
Hi Folks, i was wondering, did you ever have to analyze large pcap files. I got a 7GB pcap file i have to analyze and it seems Wireshark has some issues... Do you think Xplico could do the job? -- Marc-Andre Meloche. PGP Fingerprint 9991 7A60 C38B 7E5E E2B1 374B 718C 4141 E96D 164C _______________________________________________ Pauldotcom mailing list Pauldotcom at mail.pauldotcom.com http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
-------------- next part -------------- An HTML attachment was scrubbed... URL: http://mail.pauldotcom.com/pipermail/pauldotcom/attachments/20100112/48e39d0a/attachment.htm
Current thread:
- Large PCAP Analysis. Marc-Andre Meloche (Jan 11)
- Large PCAP Analysis. Adrian Crenshaw (Jan 11)
- Large PCAP Analysis. Xavi Garcia (Jan 11)
- Large PCAP Analysis. Josh Olson (Jan 11)
- Large PCAP Analysis. Robert Miller (Jan 11)
- Large PCAP Analysis. Adrian Crenshaw (Jan 16)
- Large PCAP Analysis. Adrian Crenshaw (Jan 11)