Skip to content

DNS-OARC/ditl-fix-pcap-header-len-caplen

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
src
src
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
Makefile.am
Makefile.am
 
 
README.md
README.md
 
 
autogen.sh
autogen.sh
 
 
configure.ac
configure.ac
 
 

Repository files navigation

ditl-fix-pcap-header-len-caplen

Quick hack to fix len and caplen in pcap_pkthdr for PCAPs generated by tcpdump with the bug libpcap version 1.5.3 causes the creation of invalid pcap files with packet length < capture length when capturing on the "any" interface.

The fix is to set caplen to len if caplen is larger then len.

Build

sh autogen.sh
./configure
make
make install

Usage

cat file.pcap | ditl-fix-pcap-header-len-caplen > fixed.pcap

You can pipeline compression also:

gzip -cd file.pcap.gz | ditl-fix-pcap-header-len-caplen | gzip > fixed.pcap.gz

About

No description, website, or topics provided.

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

0 stars

Watchers

3 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages