troubleshooting Question

Do any of the wireshark command line tools support stream reassembly or are there any other decent stream reassemblers I can use with pcap dump files?

Avatar of T1750
T1750 asked on
SecurityNetwork AnalysisTCP/IP
7 Comments1 Solution681 ViewsLast Modified:
I have a pcap filter which selects streams which are of interest to me, it selects the first SYN packet of such streams. What I need is a tool that read the pcap file and reassemble the streams producing them as raw output so I can have them processeed further by my own scripts.
Join the community to see this answer!
Join our exclusive community to see this answer & millions of others.
Unlock 1 Answer and 7 Comments.
Join the Community
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 7 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros