Wireshark · Wireshark-dev: Re: [Wireshark-dev] seeking advice on how to reconcile two packet captures

Wireshark-dev: Re: [Wireshark-dev] seeking advice on how to reconcile two packet captures

From: Brian Reichert <reichert@xxxxxxxxxxx>

Date: Mon, 28 Aug 2023 13:48:50 -0400

On Mon, Aug 28, 2023 at 11:57:54AM -0500, chuck c wrote:
> https://github.com/corelight/community-id-spec
> "When processing flow data from a variety of monitoring applications (such
> as Zeek and Suricata), it's often desirable to pivot quickly from one
> dataset to another."
> 
> A Community ID implementation for Wireshark.
> https://gitlab.com/wireshark/wireshark/-/merge_requests/281

These are both quite intriguing; thanks!


-- 
Brian Reichert				<reichert@xxxxxxxxxxx>
BSD admin/developer at large

References:
- [Wireshark-dev] seeking advice on how to reconcile two packet captures
  - From: Brian Reichert
- Re: [Wireshark-dev] seeking advice on how to reconcile two packet captures
  - From: Josh Clark
- Re: [Wireshark-dev] seeking advice on how to reconcile two packet captures
  - From: chuck c

Prev by Date: Re: [Wireshark-dev] seeking advice on how to reconcile two packet captures
Next by Date: Re: [Wireshark-dev] seeking advice on how to reconcile two packet captures
Previous by thread: Re: [Wireshark-dev] seeking advice on how to reconcile two packet captures
Next by thread: Re: [Wireshark-dev] seeking advice on how to reconcile two packet captures
Index(es):
- Date
- Thread