dm secu
This commit is contained in:
parent
49483c87a9
commit
d53d053f43
3 changed files with 32 additions and 2 deletions
|
|
@ -139,5 +139,20 @@ Dès la troisième tentative, nous cherchons deux hachages spécifiques, il est
|
|||
|
||||
#### What link-layer is included in the trace?
|
||||
|
||||
```sh
|
||||
pcap_analyzer ./trace2.pcap links
|
||||
# link EN10MB Ethernet
|
||||
```
|
||||
|
||||
La trace contient un échantillon de trafic Ethernet.
|
||||
|
||||
#### What is the snap length and what is the significance of the snapshot length? The link type defined in the packet trace header is important as we must skip over the correct amount of data to reach the IP packet (which is what were really interested in). Note that while pcap is the most popular and widely accepted packet capture format, it has several limitations, which have led to development of alternatives. For example, PcapNg, or next-generation pcap, is now the default format in Wireshark.
|
||||
|
||||
La « snap length » est un paramètre des accesseurs d'un paquet, il sert à limiter la taille des données lues dans un paquet.
|
||||
|
||||
#### Find the documentation for PcapNg online. Briefly (no more than 2 or 3 sentences) describe the differences between pcap and PcapNg.
|
||||
|
||||
Le PcapNg introduit les fonctionnalités suivantes :
|
||||
- Un seul fichier peut contenir plusieurs liens.
|
||||
- Des annotations peuvent être ajoutés aux trammes.
|
||||
- Des structures spécialisés permettent de compacter les données réccurentes (addresses, clés).
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue