[Pauldotcom] Best scripting language for Pcap parsing
Joshua Wright
jwright at hasborg.com
Tue Dec 1 17:02:04 UTC 2009
I advise that you pick a language first, and worry about library support
later. I've used various libpcap tools in Perl, Python and Ruby, and
they all suck a little (notably, most lack support for pcap_dumper()).
Also, I wrote my own pcap handler in Python, and it was very
straightforward (attached, for reference, though this only deals with
files and not live captures).
-Josh
Adrian Crenshaw wrote:
> Ok, I'm about to start a holy war. :) I've been asked to write something
> about coding scripts to parse Pcap files. All sorts of languages have
> libraries for doing this: Ruby, Perl, Python, Autoit, etc. Which one do you
> think is the most readable/easiest?
>
> Thanks,
> Adrian
>
>
>
> ------------------------------------------------------------------------
>
> _______________________________________________
> Pauldotcom mailing list
> Pauldotcom at mail.pauldotcom.com
> http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
> Main Web Site: http://pauldotcom.com
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: pcapdump.py
Url: http://mail.pauldotcom.com/pipermail/pauldotcom/attachments/20091201/f3bf74c6/attachment.txt
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 195 bytes
Desc: OpenPGP digital signature
Url : http://mail.pauldotcom.com/pipermail/pauldotcom/attachments/20091201/f3bf74c6/attachment.pgp
More information about the Pauldotcom
mailing list