Parsing a pcap file in python [duplicate]

I would use python-dpkt.Here is the documentation.

This is all I know how to do though sorry.

#!/usr/local/bin/python2.7import dpktcounter=0ipcounter=0tcpcounter=0udpcounter=0filename='sampledata.pcap'for ts, pkt in dpkt.pcap.Reader(open(filename,'r')):    counter+=1    eth=dpkt.ethernet.Ethernet(pkt)     if eth.type!=dpkt.ethernet.ETH_TYPE_IP:       continue    ip=eth.data    ipcounter+=1    if ip.p==dpkt.ip.IP_PROTO_TCP:        tcpcounter+=1    if ip.p==dpkt.ip.IP_PROTO_UDP:       udpcounter+=1print "Total number of packets in the pcap file: ", counterprint "Total number of ip packets: ", ipcounterprint "Total number of tcp packets: ", tcpcounterprint "Total number of udp packets: ", udpcounter

Update:

Project on GitHub, documentation here

python parsing pcap

You might want to start with scapy.

CodeHunter

Parsing a pcap file in python [duplicate]

Recent Posts

How can I color dots in a xy scatterplot according to column value?

How to update a claim in ASP.NET Identity?

What does {0} mean when initializing an object?

Accessing members of items in a JSONArray with Java

How to log SQL statements in Spring Boot?

Powershell Get-WebSite name parameter is ignored

How to detect scroll to bottom of html element

Java synchronized method

How to test controllers with CodeIgniter?

Detect Visual Composer

Matplotlib: Specify format of floats for tick labels

Rails join a list of strings with commas and "and" before the last