![]() The values to search are IP addresses, CIDR ranges, and TCP or UDP ports or protocols. The user inputs which objects the playbook should search for in the PCAP. The playbook can handle one PCAP file per incident. Supported file types are pcap, cap, pcapng. This playbook is used to parse and search within PCAP files. ![]() ![]() This Playbook is part of the PCAP Analysis Pack. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |