Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Filtering paquets with pcap.h
Top Forums Programming Filtering paquets with pcap.h Post 302172319 by danathane on Monday 3rd of March 2008 10:41:30 AM
Old 03-03-2008
Do you think that their is an IDS who can perform a full extraction form a pcap file? Because I need to develop a program wtich can extract the datas and restore it clearly.
 

10 More Discussions You Might Find Interesting

1. Programming

Compiling Pcap.c

I don't know if this is the correct forum to post this but hopefully someone can atleast point me in the right direction if they can't help me. I am trying to install the Net::Pcap module for perl from Tim Potter version .04. I have installed gcc 2.95.3 on my Solaris 8 box. I am sure it's just... (6 Replies)
Discussion started by: TioTony
6 Replies

2. Programming

pcap.h

I cant use pcap.h include file. How can I do so? :confused: (8 Replies)
Discussion started by: Pervez Sajjad
8 Replies

3. Programming

Pcap.h Sniffing

Can someone please help me figure out how to use pcap.h to sniff packets between only 2 computers whose mac addresses are know? Thanks (0 Replies)
Discussion started by: papabearcares
0 Replies

4. Shell Programming and Scripting

Pcap.h Sniffing

Can someone please help me figure out how to use pcap.h to sniff packets between only 2 computers whose mac addresses are know? Thanks (0 Replies)
Discussion started by: papabearcares
0 Replies

5. UNIX for Dummies Questions & Answers

Filtering pcap files

Hi, I am new at UNIX and programing in general and only have a basic knowledge of C++. I am helping out with some research at a college and was given the task to sort through captured packets via IP addresses. I was wondering if anyone could help me with writing a code which filters through pcap... (1 Reply)
Discussion started by: hershey101
1 Replies

6. Programming

searching through pcap files

Hi, I am new at UNIX and programing in general and only have a basic knowledge of C++. I am helping out with some research at a college and was given the task to sort through captured packets via IP addresses. I was wondering if anyone could help me with writing a code which filters through pcap... (4 Replies)
Discussion started by: hershey101
4 Replies

7. Programming

Packet capturing using pcap

Hi, i am using a linux CentOS machine. I have 2 real network interfaces eth0, eth1 and 2 virtual interfaces tap0 and tap1. I am using PCAP library to capture the packets on theses interfaces. If i specify the interface as "any", i cannot find a way to know from which interface the packet... (1 Reply)
Discussion started by: rahulnitk2004
1 Replies

8. Shell Programming and Scripting

Sampling pcap file

Hi, I have a standard pcap file created using tcpdump. The file looks like 06:49:36.487629 IP 202.1.175.252 > 71.126.222.64: ICMP echo request, id 52765, seq 1280, length 40 06:49:36.489552 IP 192.120.148.227 > 71.126.222.64: ICMP echo request, id 512, seq 1280, length 40 06:49:36.491812 IP... (8 Replies)
Discussion started by: sajal.bhatia
8 Replies

9. Programming

Ascii vs Pcap tracing

Dear All, Which is better to use ? Ascii or Pcap tracing ? Or are they complementary ? (1 Reply)
Discussion started by: knowledgeSeeker
1 Replies

10. Programming

PCAP -> PFRING

Hi I have a program that captures packets with the libpcap library by calling the pcap-functions, e.g. pcap_next(...). I would like to use PF_RING for the program and therefore I would have to adjust the calling functions to pfring_open(...) pfring_recv(...) I'm pretty knew in network... (0 Replies)
Discussion started by: Freaky123
0 Replies

LEARN ABOUT DEBIAN

bup-meta

bup-meta(1)						      General Commands Manual						       bup-meta(1)

NAME

       bup-meta - create or extract a metadata archive

SYNOPSIS

       bup meta --create
	      [-R] [-v] [-q] [--no-symlinks] [--no-paths] [-f file] <paths...>

       bup meta --list
	      [-v] [-q] [-f file]

       bup meta --extract
	      [-v] [-q] [--numeric-ids] [--no-symlinks] [-f file]

       bup meta --start-extract
	      [-v] [-q] [--numeric-ids] [--no-symlinks] [-f file]

       bup meta --finish-extract
	      [-v] [-q] [--numeric-ids] [-f file]

DESCRIPTION

       bup meta  either  creates  or  extracts	a  metadata archive.  A metadata archive contains the metadata information (timestamps, ownership,
       access permissions, etc.)
	for a set of filesystem paths.

OPTIONS

       -c, --create
	      Create a metadata archive for the specified paths.  Write the archive to standard output unless --file is specified.

       -t, --list
	      Display information about the metadata in an archive.  Read the archive from standard output unless --file is specified.

       -x, --extract
	      Extract a metadata archive.  Conceptually, perform --start-extract followed by --finish-extract.	Read  the  archive  from  standard
	      input unless --file is specified.

       --start-extract
	      Build  a	filesystem tree matching the paths stored in a metadata archive.  By itself, this command does not produce a full restora-
	      tion of the metadata.  For a full restoration, this command must be followed by a call to --finish-extract.  Once this  command  has
	      finished,  all  of  the normal files described by the metadata will exist and be empty.  Restoring the data in those files, and then
	      calling --finish-extract should restore the original tree.  The archive will be read from standard input unless --file is specified.

       --finish-extract
	      Finish applying the metadata stored in an archive to the filesystem.  Normally, this  command  should  follow  a	call  to  --start-
	      extract.	The archive will be read from standard input unless --file is specified.

       -f, --file=filename
	      Read  the  metadata archive from filename or write it to filename as appropriate.  If filename is "-", then read from standard input
	      or write to standard output.

       -R, --recurse
	      Recursively descend into subdirectories during --create.

       --numeric-ids
	      Apply numeric user and group IDs (rather than text IDs) during --extract or --finish-extract.

       --symlinks
	      Record symbolic link targets when creating an archive, or restore symbolic links when extracting an  archive  (during  --extract	or
	      --start-extract).  This option is enabled by default.  Specify --no-symlinks to disable it.

       --paths
	      Record pathnames when creating an archive.  This option is enabled by default.  Specify --no-paths to disable it.

       -v, --verbose
	      Be more verbose (can be used more than once).

       -q, --quiet
	      Be quiet.

EXAMPLES

	      # Create a metadata archive for /etc.
	      $ bup meta -cRf etc.meta /etc
	      bup: removing leading "/" from "/etc"

	      # Extract the etc.meta archive (files will be empty).
	      $ mkdir tmp && cd tmp
	      $ bup meta -xf ../etc.meta
	      $ ls
	      etc

	      # Restore /etc completely.
	      $ mkdir tmp && cd tmp
	      $ bup meta --start-extract -f ../etc.meta
	      ...fill in all regular file contents using some other tool...
	      $ bup meta --finish-extract -f ../etc.meta

BUGS

       Hard links are not handled yet.

BUP

       Part of the bup(1) suite.

AUTHORS

       Rob Browning <rlb@defaultvalue.org>.

Bup unknown-															       bup-meta(1)
All times are GMT -4. The time now is 01:10 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy