Threat Level: green Handler on Duty: Guy Bruneau

SANS ISC: Diaries by Keyword Diaries by Keyword

Participate: Learn more about our honeypot network
https://isc.sans.edu/honeypot.html

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Date Author Title

PCAP AWK SORT UNIQ PARSING

2010-03-27Guy BruneauCreate a Summary of IP Addresses from PCAP Files using Unix Tools

PCAP

2020-04-01/a>Brad DuncanQakbot malspam sent from an infected Windows host
2020-01-05/a>Didier Stevensetl2pcapng: Convert .etl Capture Files To .pcapng Format
2019-12-24/a>Brad DuncanMalspam with links to Word docs pushes IcedID (Bokbot)
2019-12-03/a>Brad DuncanUrsnif infection with Dridex
2019-11-27/a>Brad DuncanFinding an Agent Tesla malware sample
2019-10-29/a>Xavier MertensGenerating PCAP Files from YAML
2019-10-09/a>Brad DuncanWhat data does Vidar malware steal from an infected host?
2019-10-03/a>Jim ClausingBuffer overflows found in libpcap and tcpdump
2019-05-22/a>Johannes UllrichAn Update on the Microsoft Windows RDP "Bluekeep" Vulnerability (CVE-2019-0708) [now with pcaps]
2019-03-18/a>Didier StevensWireshark 3.0.0 and Npcap: Some Remarks
2019-03-11/a>Didier StevensWireshark 3.0.0 and Npcap
2018-11-18/a>Guy BruneauMultipurpose PCAP Analysis Tool
2018-08-15/a>Xavier MertensTruncating Payloads and Anonymizing PCAP files
2018-06-06/a>Xavier MertensConverting PCAP Web Traffic to Apache Log
2018-01-18/a>Xavier MertensComment your Packet Captures!
2017-09-28/a>Xavier MertensThe easy way to analyze huge amounts of PCAP data
2017-05-26/a>Lorna HutchesonFile2pcap - A new tool for your toolkit!
2017-01-28/a>Lorna HutchesonPacket Analysis - Where do you start?
2014-06-04/a>Richard Porterp0f, Got Packets?
2013-12-01/a>Richard PorterBPF, PCAP, Binary, hex, why they matter?
2013-06-05/a>Richard PorterWireshark 1.10.0 Stable Released http://www.wireshark.org/download.html
2011-10-23/a>Guy Bruneautcpdump and IPv6
2010-07-04/a>Manuel Humberto Santander PelaezNew Winpcap Version
2010-03-27/a>Guy BruneauCreate a Summary of IP Addresses from PCAP Files using Unix Tools
2009-11-25/a>Jim ClausingUpdates to my GREM Gold scripts and a new script
2009-08-13/a>Jim ClausingTools for extracting files from pcaps
2009-06-28/a>Guy BruneauIP Address Range Search with libpcap

AWK

2014-05-18/a>Russ McReesed and awk will always rock
2010-12-13/a>Deborah HaleGawker Media Breach of Security
2010-03-27/a>Guy BruneauCreate a Summary of IP Addresses from PCAP Files using Unix Tools

SORT

2010-03-27/a>Guy BruneauCreate a Summary of IP Addresses from PCAP Files using Unix Tools

UNIQ

2010-05-19/a>Jason LamEFF paper about browser tracking
2010-03-27/a>Guy BruneauCreate a Summary of IP Addresses from PCAP Files using Unix Tools

PARSING

2013-07-06/a>Guy BruneauIs Metadata the Magic in Modern Network Security?
2010-03-27/a>Guy BruneauCreate a Summary of IP Addresses from PCAP Files using Unix Tools