代码拉取完成,页面将自动刷新
用于解析tcpdump/dumpcap工具生成的pcap/pcapng文件的小工具。
LINUX
git clone https://gitee.com/yixiangzhike/python-pcapparser.git
python3 setup.py build install
或者
python3 setup.py build install --single-version-externally-managed --root=/
pcap-parse -h/--help
pcap-parse xx.pcap
pcap-parse -n 12 xx.pcap
pcap-parse -o outfile xx.pcap
$ pcap-parse tests/full.pcap -H
-----------------------------------------------------------------------------------
| Pcap File Header | Link Type: 1-Ethernet, and Linux loopback devices
-----------------------------------------------------------------------------------
| Magic | Major | Minor | Thiszone | Sigfigs | Snap Length | Link Type | |
-----------------------------------------------------------------------------------
| D4C3B2A1 | 0002 | 0004 | 00000000 | 00000000 | 00040000 | 00000001 | HEX |
-----------------------------------------------------------------------------------
| D4C3B2A1 | 2 | 4 | 0 | 0 | 262144 | 1 | DEC |
-----------------------------------------------------------------------------------
$ pcap-parse tests/full.pcap -n 2
-----------------------------------------------------------------------------------
| Pcap File Header | Link Type: 1-Ethernet, and Linux loopback devices
-----------------------------------------------------------------------------------
| Magic | Major | Minor | Thiszone | Sigfigs | Snap Length | Link Type | |
-----------------------------------------------------------------------------------
| D4C3B2A1 | 0002 | 0004 | 00000000 | 00000000 | 00040000 | 00000001 | HEX |
-----------------------------------------------------------------------------------
| D4C3B2A1 | 2 | 4 | 0 | 0 | 262144 | 1 | DEC |
-----------------------------------------------------------------------------------
|>>> Packet Header [1] |
--------------------------------------------------------------------
| Timestamp(s) | Timestamp(us) | Cap Len | Length | |
--------------------------------------------------------------------
| 64D6DB5F | 000266CE | 0000002A | 0000002A | HEX |
--------------------------------------------------------------------
| 2023-08-12 09:07:43 | 157390 | 42 | 42 | DEC |
--------------------------------------------------------------------
|>>> Ethernet Frame Header |
-------------------------------------------------------
| D.MAC | S.MAC | Ether Type |
-------------------------------------------------------
| FF:FF:FF:FF:FF:FF | 28:73:8D:41:EE:D4 | 0806 |
-------------------------------------------------------
|>>> ARP Frame Header | ARP Request |
------------------------------------------------------------------------------------------------------
|HWType|PtoType|HWSize|PtoSize|OP|S.MAC |S.IP |D.MAC |D.IP |
------------------------------------------------------------------------------------------------------
|0001 |0800 |6 |4 |1 |28:73:8D:41:EE:D4|192.168.1.11 |FF:FF:FF:FF:FF:FF|192.168.1.31 |
------------------------------------------------------------------------------------------------------
此处可能存在不合适展示的内容,页面不予展示。您可通过相关编辑功能自查并修改。
如您确认内容无涉及 不当用语 / 纯广告导流 / 暴力 / 低俗色情 / 侵权 / 盗版 / 虚假 / 无价值内容或违法国家有关法律法规的内容,可点击提交进行申诉,我们将尽快为您处理。