Open ZAJHammond opened 10 years ago
Some commands to put into a test script:
argus -r capture2.pcap -w - | ratop
cat alert | snortalert2csv.pl “sip dip”
dnstop -R -l 4 capture2.pcap
dot, neato, fdp, afterglow
treemap
gephi
mondrian
tulip
ggobi
sudo snort -c /etc/snort/snort.conf -r capture2.pcap
sudo cat /var/log/snort/alert
curl localhost:9292
rstudio
R
tshark
run wireshark from menu
Priority: High
Making sure all tools actually work