At Mu, we deal with pcaps every day. We love Wireshark. We decode packets, work with protocols, auto generate test cases (functional to fuzz) from pcaps by analyzing the contents and just have incredible amounts of fun solving major problems for our customers. Yet when it comes to replicating field issues, most of our customers struggle with large pcaps and try to get a bird’s eye view of what’s in it to pinpoint the conversation or packet that triggered a bug. This takes hours if not days. With Mu Studio, it’s super easy to load a multi-protocol transaction and use it as the basis for testing – from functional to fuzz. But how do you find the suspicious transaction or conversation from the large pcap before you can test?
Background
Network forensics and troubleshooting is nothing new. Ever since the first packet was generated on a network, people have always tried to make sense out of packets. Yet they are constantly stitching together tools with serious command-line kung fu to get the job done. Take a look at some of these use cases:
- Cisco Blog: Finding a needle in a pcap
- Nanog Thread: DNS Query Analyzer
- Network Forensics Puzzles: Ann’s Bad AIM
- ISC Diary: Tools for extracting files from pcaps
The one use case that’s not blogged about that much is that of network operations and support folks trying to reproduce a bug from their customer, when all they have is a large pcap.
Announcing xtractr
xtractr is a collaborative cloud app for indexing, searching, extracting and reporting on pcaps. The lite version can index up to 2.5 million packets and 250 MBytes of pcaps. We understand the sensitivity of packets (usernames, passwords, IP’s, etc) and so the xtractr index stays local to you on your machine. The analytics and collaboration however, is hosted on pcapr and runs in your web browser.
Here’s a quick introduction to xtractr:
Get started with xtractr!
Pingback: sploit.dk » New tools on the block
Pingback: Google Redirect Fix
Pingback: Inspiration From Nature
Pingback: guaranteed rankings
Pingback: Dallas Marketing
Pingback: Dallas Website Design
Pingback: Dallas Boudoir Photographer
Pingback: best supplement for muscle gain
Pingback: best bcaa
Pingback: webcam chat
Pingback: possession
Pingback: surf board tips
Pingback: womens jewellery
Pingback: Ross Pine
Pingback: SATNAV
Pingback: Dr.Shams Eye Care Clinic
Pingback: magic flight launch box
Pingback: florida unemployment benefits
Pingback: weight loss exercise
Pingback: solihull dental treatment
Pingback: inkjet cartridges
Pingback: uzaktan egitim
Pingback: Search Inmates
Pingback: best over the counter sleep aid
Pingback: Roswell Garage Door Service
Pingback: psoriasis treatment
Pingback: Florida drug rehab
Pingback: best shampoo for oily hair
Pingback: Shakti
Pingback: anti wrinkle placenta cream
Pingback: document scanners
Pingback: Prenatal Massage New York City
Pingback: photographer in Oxfordshire
Pingback: hcg diet recipes
Pingback: investment properties
Pingback: Organo Gold
Pingback: Join project payday
Pingback: hypnosis for weight loss
Pingback: DSW printable coupons
Pingback: croscill comforters
Pingback: shutter graphics
Pingback: spamfilter
Pingback: Ameri Ichinose
Pingback: e-cigs
Pingback: home fitness workout program
Pingback: Jennifer Ellison baby
Pingback: Meet and greet at Gatwick
Pingback: noclegi nad morzem
Pingback: Low Interest Payday Loans
Pingback: Tattoo
Pingback: gynexin
Pingback: bathroom tile backsplash ideas
Pingback: marijuana addiction
Pingback: work at home
Pingback: Adolfo Dolsen
Pingback: mma gyms
Pingback: motivation for weight loss
Pingback: Los Angeles Divorce Lawyer
Pingback: haier portable air conditioner parts
Pingback: how to make your hair wavy with braids
Pingback: how to scrunch hair overnight
Pingback: children's furniture
Pingback: fire pit screens
Pingback: play houses
Pingback: Good video camera
Pingback: Free Online Calculator
Pingback: New york city hotels
Pingback: earn money
Pingback: tone butt
Pingback: Car girls
Pingback: office furniture removal
Pingback: Scott Tucker Payday Loans
Pingback: Scott Tucker Payday Loans
Pingback: winchester safe
Pingback: best electric shaver
Pingback: billiards fundamentals
Pingback: Scott Tucker Racing
Pingback: Scott Tucker Racing
Pingback: what you think about that
Pingback: Scott Tucker Payday Loans
Pingback: Fancy dress costumes
Pingback: shaun smith zeek rewards
Pingback: dunedin real estate for sale
Pingback: BPO Software
Pingback: fanny pack
Pingback: Scott Tucker CBS
Pingback: Scott Tucker Leawood
Pingback: REO Companies
Pingback: Website Hosting