Working With Linux Cooked Capture Headers Using TraceWrangler

The ProblemSometimes when loading a PCAP into various tools you get a cryptic error: an interface has a type 1 different from the type of the first interface. I had one PCAP that would generate various errors in different tools.The EvidenceBrim:See this Github issue I raised.Zeek:root@server:~/ct...
Published on April 12, 2021 | 3 min read

pcap tracewrangler tcpdump