Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: write a script to parse some tcpdump output
Top Forums Shell Programming and Scripting write a script to parse some tcpdump output Post 302284073 by fedora on Wednesday 4th of February 2009 04:56:38 PM
Old 02-04-2009
write a script to parse some tcpdump output
i am trying to write a script to parse some tcpdump output, in each line of the tcpdump output, I know for sure there are 3 keywords exist:

User{different usernamehere}

NAS_ipaddr{different ip here}

Calling_station{ip or dns name here}

But the positions for these 3 keywords in the line are somehow random, I can not expect where the keyword will appear.


for example, it can be

10:00 1.2.3.4 4.5.6.7 User{test} bla NAS_ipaddr{1.2.3.6} blaba Calling_station{2.2.2.2} blablalba
10:06 blabla NAS_ipaddr{2.2.3.6} blaba Calling_station{2.2.2.2} blablalba User{test} bla
10:08 User{test} NAS_ipaddr{2.2.3.6} blabla Calling_station{a.b.c.d}

You will notice there is no fixed format for each line, and between the keywords there may or maynot have some other random words.

So is it possible read all the cotent, and extract only User{}, NAS_ipaddr{} and Calling_station{i } , then rearrange the output, put user first, nas_ipaddress second and calling_station third?
 

10 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

To parse through the file and print output using awk or sed script

suppose if u have a file like that Hen ABCCSGSGSGJJJJK 15 Cock ABCCSGGGSGIJJJL 15 * * * * * * : * * * . * * * : Hen CFCDFCSDFCDERTF 30 Cock CHCDFCSDHCDEGFI 30 * . * * * * * * * : * * :* : : . The output shud be where there is : and . It shud... (4 Replies)
Discussion started by: cdfd123
4 Replies

2. Shell Programming and Scripting

analyzing tcpdump output

hello, i have a lot of pcap files (tcpdump output) that i want to compare. every tcpdump output has two file, server and client. what i want to do is: 1. take timestamp, source address, destination address, and packet id from each file (server and client) 2. find the packets sent from... (0 Replies)
Discussion started by: slumpia
0 Replies

3. Shell Programming and Scripting

Perl script to parse output and print it comma separated

I need to arrange output of SQL query into a comma separated format and I'm struggling with processing the output... The output is something like this: <Attribute1 name><x amount of white spaces><Atribute value> <Attribute2 name><x amount of white spaces><Atribute value> <Attribute3... (2 Replies)
Discussion started by: Juha
2 Replies

4. Shell Programming and Scripting

Script to parse TOP output for Excel

I'd like to parse TOP output file containing data like the below, and then be able to import the parsed file in to Excel where I can easily generate graphs. Ideally, the output would have a single column for each value in the output. Any thoughts on how to get started with this, or a better... (3 Replies)
Discussion started by: NoMasVentanas
3 Replies

5. Shell Programming and Scripting

Write Awk output to a file , inside script.

Hi, Can anyone please help me with this issue. I have a Awk command which take file as input, and provides the output having multiple lines, its working in command mode, but not if i plug it in script. #!/bin/ksh infile=a.txt outfile=b.txt awk ' BEGIN{ FS=OFS="|";ORS = "\n";... (1 Reply)
Discussion started by: sp999
1 Replies

6. Shell Programming and Scripting

Write output to a file using Korn shell script

All, Can anyone please help me with the below scenario in korn shell script. Can anyone please give me some hints to proceed on this. I have a Flat file of the below format. Input file format:... (1 Reply)
Discussion started by: sp999
1 Replies

7. Shell Programming and Scripting

tcpdump script to parse "packers captured" details

I want a script that would do as:- a) gives me packet capture account for each time it runs. b) be able to run at a particular time for specific period time duration (1 min). c) for each time it runs it saves the time / day. Is there a way where i can capture the details as seen in the... (2 Replies)
Discussion started by: lazerz
2 Replies

8. Shell Programming and Scripting

How to write this script:- check output word and send a mail?

Hi Guys, I am not Good at scripting. I need to write a script such that if output of command shows the particular word in output then send mail to abc@compay.com -bash-3.2$ ps -ef | grep bpbkar root 6040 1 0 13:05:19 ? 0:00 bpbkar -r 2678400 -ru root -dt 47395 -to 0... (20 Replies)
Discussion started by: manalisharmabe
20 Replies

9. Cybersecurity

Need Help with this TCPDUMP output...

Hello everyone, so I'm getting this tcpdump, and it looks like..quite a mess... Can anyone decipher this? I can tell that one IP is requesting DNS info? but I'm having trouble finding out what some of the fields actually mean.. 19:44:50.707637 IP 66.81.1.252.53 > 64.147.113.139.28638: 52313... (4 Replies)
Discussion started by: Lost in Cyberia
4 Replies

10. Shell Programming and Scripting

Need a script to parse data and output to csv

I am not too savvy with arrays and am assuming that what I am looking for needs arrays. This is my requirement. So I have the raw data that gets updated to a log as shown below StudentInfo: FullInfo = { Address = Newark Age = 20 Name= John } StudentInfo:... (2 Replies)
Discussion started by: sidnow
2 Replies

LEARN ABOUT CENTOS

extract

EXTRACT(1)						      General Commands Manual							EXTRACT(1)

NAME

       extract - determine meta-information about a file

SYNOPSIS

       extract [ -bghLnvV ] [ -H hash-algorithm ] [ -i ] [ -l library ] [ -p type ] [ -x type ] file ...

DESCRIPTION

       This manual page documents version 0.6.0 of the extract command.

       extract	tests  each  file  specified  in the argument list in an attempt to infer meta-information from it.  Each file is subjected to the
       meta-data extraction libraries from libextractor.

       libextractor classifies meta-information (also referred to as keywords) into types. A list of all types can be obtained with the -L option.

OPTIONS

       -b      Display the output in BiBTeX format.

       -g      Use grep-friendly output (all keywords on a single line for each file).	Use the verbose option to print the filename  first,  fol-
	       lowed  by  the keywords.  Use the verbose option twice to also display the keyword types.  This option will not print keyword types
	       or non-textual metadata.

       -h      Print a brief summary of the options.

       -i      Run plugins in-process (for debugging).	By default, each plugin is run in its own process.

       -l libraries
	       Use the specified libraries to extract keywords. The general format of libraries  is  .I  [[-]LIBRARYNAME[:[-]LIBRARYNAME]*]  where
	       LIBRARYNAME  is a libextractor compatible library and typically of the form .Ijpeg. The minus before the libraryname indicates that
	       this library should be removed from the existing list.  To run only a few selected plugins, use -l in combination with -n.

       -L      Print a list of all known keyword types.

       -n      Do not use the default set of extractors (typically all standard extractors, currently mp3, ogg, jpg, gif, png, tiff,  real,  html,
	       pdf and mime-types), use only the extractors specified with the .B -l option.

       -p  type
	       Print  only  the  keywords  matching  the specified type. By default, all keywords that are found and not removed as duplicates are
	       printed.

       -v      Print the version number and exit.

       -V      Be verbose.  This option can be specified multiple times to increase verbosity further.

       -x  type
	       Exclude keywords of the specified type from the output. By default, all keywords that are found and not removed as  duplicates  are
	       printed.

SEE ALSO

       libextractor(3) - description of the libextractor library

EXAMPLES

       $ extract test/test.jpg
       comment - (C) 2001 by Christian Grothoff, using gimp 1.2 1
       mimetype - image/jpeg

       $ extract -V -x comment test/test.jpg
       Keywords for file test/test.jpg:
       mimetype - image/jpeg

       $ extract -p comment test/test.jpg
       comment - (C) 2001 by Christian Grothoff, using gimp 1.2 1

       $ extract -nV -l png.so -p comment test/test.jpg test/test.png
       Keywords for file test/test.jpg:
       Keywords for file test/test.png:
       comment - Testing keyword extraction

LEGAL NOTICE

       libextractor and the extract tool are released under the GPL.  libextractor is a GNU package.

BUGS

       A couple of file-formats (on the order of 10^3) are not recognized...

AUTHORS

       extract	was  originally  written  by  Christian  Grothoff  <christian@grothoff.org> and Vidyut Samanta <vids@cs.ucla.edu>. Use <libextrac-
       tor@gnu.org> to contact the current maintainer(s).

AVAILABILITY

       You can obtain the original author's latest version from http://www.gnu.org/software/libextractor/

libextractor 0.6.0						   Dec 20, 2009 							EXTRACT(1)
All times are GMT -4. The time now is 05:30 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy