Pcap Diff Save

Diff two or more PCAP files

Project README

pcap-diff

Diff two or more pcap files and write a pcap file with different packets as result

Requirements

Python 3.x Scapy (pip3 install scapy)

Example usages

Diff client.dump and server.dump but ignore different packets on client side

.. code-block:: bash

pcap_diff.py -i client.dump -i server.dump -o diff.pcap -l

Show all differences but ignore all mac addresses

.. code-block:: bash

pcap_diff.py -i client.dump -i server.dump -o diff.pcap -f m

Ignore all IP Ids, TCP sequence and acknowledgement number

.. code-block:: bash

pcap_diff.py -i client.dump -i server.dump -o diff.pcap -f ii -f sa

Ignore everthing below 802.11 layer

.. code-block:: bash

pcap_diff.py -i client.dump -i server.dump -o diff.pcap -L Dot11

Do a diff over all packet headers including timestamps, ttl and checksums

.. code-block:: bash

pcap_diff.py -i client.dump -i server.dump -o diff.pcap -c

License

Copyright 2013-2018 ETH Zurich, ISGINF, Bastian Ballmann E-Mail: [email protected] Web: http://www.isg.inf.ethz.ch

This is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version.

It is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.

You should have received a copy of the GNU General Public License. If not, see http://www.gnu.org/licenses/.

Open Source Agenda is not affiliated with "Pcap Diff" Project. README Source: isginf/pcap-diff
Stars
101
Open Issues
2
Last Commit
2 years ago
Repository
Tags

Open Source Agenda Badge

Open Source Agenda Rating