offline analysis

how to perform offline analysis and view analysis statistic ?

Hello Hossein,

First idea, capture the network packets using something likes "tcpdump
-i ethx -w foo.cap", then use "Bro" to read "foo.cap".

With regards,

Jean-Philippe.