On Tue, 14 Nov 2006 12:19:43 -0800, "frap puccino" <frapp3@xxxxxxxxxxx>
said:
> I work for the Navy and because some of our lab captures are done in a
> secret/classified environment, in order to remove the traces from the
> lab,
> we need to make them human readable to ensure to security officials that
> there isn't secret data hidden in the traces. Although we could provide
> "tcpdump -w" output, the problem we have is that we'd still like to be
> able
> to use analyzer tools that require libpcap format data after the data
> leaves
> the secret/classified lab. So we are looking into ways to translate
> libpcap
> binary outputs to readable text then back to libpcap binary format.
>
> We were hoping someone has already written a utility that would translate
> libpcap output into something human readable, such as xml, and perhaps
> there
> would then be a capability to translate it back to libpcap format too.
> If
> anyone has heard about something out there that does this, please let us
> know.
>
> Any feedback on other ideas to make this work would be appreciated.
To find ascii strings in binary files, I use the "strings" command.
It works on any file (binary or not).
-Marc