[Pauldotcom] Large PCAP Analysis.
Robert Miller
arch3angel at gmail.com
Tue Jan 12 05:56:31 UTC 2010
Depending on what you need to look for the professional version of
NetWitness offers the ability to analysis larger pcap and cap files.
Personally I use the free version and split the pcap/cap files into 1-2
GB chunks and run through numerous tools depending on my needs. The
tool I have use most of the time to split the files was the same as
Adrian mentioned - splitpcap
- Robert
(arch3angel)
On 1/11/2010 1:21 PM, Marc-Andre Meloche wrote:
> Hi Folks, i was wondering, did you ever have to analyze large pcap files.
>
> I got a 7GB pcap file i have to analyze and it seems Wireshark has
> some issues...
>
> Do you think Xplico could do the job?
>
>
> --
> Marc-Andre Meloche.
>
> PGP Fingerprint
> 9991 7A60 C38B 7E5E E2B1
> 374B 718C 4141 E96D 164C
>
>
> _______________________________________________
> Pauldotcom mailing list
> Pauldotcom at mail.pauldotcom.com
> http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
> Main Web Site: http://pauldotcom.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mail.pauldotcom.com/pipermail/pauldotcom/attachments/20100112/48e39d0a/attachment.htm
More information about the Pauldotcom
mailing list