Hi,I have a stupid question:Can I do an offline-analysis with Bro of a trace file in pcap form?thank you..
The Bro binary has the "-r" option similar to tcpdump for reading in pcap formatted tracefiles.
.Seth
Hi,I have a stupid question:Can I do an offline-analysis with Bro of a trace file in pcap form?thank you..
The Bro binary has the "-r" option similar to tcpdump for reading in pcap formatted tracefiles.
.Seth