get_iat and iat_cmp 0.1 review

Download
by rbytes.net on

get_iat and iat_cmp are two small programs to extract and to very basic analysis of packet inter arrival times (unfortunaly often wro

License: GPL (GNU General Public License)
File size: 4K
Developer: Gregor Maier
0 stars award from rbytes.net

get_iat and iat_cmp are two small programs to extract and to very basic analysis of packet inter arrival times (unfortunaly often wrongly called inter packet gaps) in a pcap network trace.

- get_iat just reads one pcap files an outputs the inter arrival time and the time
difference between this packet and the first one for all packets

- iat_cmp compares several pcap files and checks how much their inter arrival
times differ. This "compare" is done by sorting the inter arrival time
difference into buckets. Currently the buckets must be configured by hand
in the source code.

BEWARE: these programs have not been tested very exensively. So expect
crashes.

Installation:

Requires GNU make (gmake)
Edit the Makefile and change the path to your libpcap installation.

type :
# make
# make install

get_iat and iat_cmp 0.1 search tags