我想对pcap文件做一个分析,但是对于我想要的简单分析, tshark似乎相当沉重,比如:
有一个更简单的方法来获得这些统计数据?
以可爱的方式使用可爱的Python:
# apt-get install python-pypcap >>> import pcap >>> p = pcap.pcap(name="hs22v-boot.pcap") >>> packets = [x for x in p] >>> duration = packets[-1][0] - packets[0][0] >>> totalbytes = sum([len(x[1]) for x in packets]) >>> numpackets = len(packets) >>> duration, totalbytes, numpackets (113.37264108657837, 193812281, 227491)