如何从 txt 文件中提取数据包?
[英]How can I extract packets from txt file?
问题描述
I have a file as trace.txt which consists of packets and I want to extract each packet from it.
我有一个名为 trace.txt 的文件,其中包含数据包,我想从中提取每个数据包。 The file as follows:文件如下:
IP (tos 0x0, ttl 64, id 42387, offset 0, flags [none], proto UDP (17), length 364)
10.30.23.135.17500 > 255.255.255.255.17500: UDP, length 336
IP (tos 0x0, ttl 64, id 35677, offset 0, flags [none], proto UDP (17), length 364)
10.30.23.135.17500 > 10.30.31.255.17500: UDP, length 336
IP (tos 0x0, ttl 128, id 28996, offset 0, flags [none], proto UDP (17), length 78)
10.30.12.151.137 > 10.30.15.255.137: NBT UDP PACKET(137): QUERY; REQUEST; BROADCAST
IP (tos 0x0, ttl 128, id 10723, offset 0, flags [none], proto UDP (17), length 78)
10.30.11.184.137 > 10.30.15.255.137: NBT UDP PACKET(137): QUERY; REQUEST; BROADCAST
IP (tos 0x0, ttl 1, id 16034, offset 0, flags [none], proto UDP (17), length 50)
10.30.17.171.53709 > 224.0.0.252.5355: UDP, length 22
IP (tos 0x0, ttl 64, id 60954, offset 0, flags [none], proto UDP (17), length 44)
10.30.12.163.50558 > 10.30.15.255.8612: UDP, length 16
IP (tos 0x0, ttl 1, id 17167, offset 0, flags [none], proto UDP (17), length 44)
10.30.12.163.50183 > 224.0.0.1.8612: UDP, length 16
.
.
.
How can I classify them where it is a SYN or ACK packet?如何将它们分类为 SYN 或 ACK 数据包? And How can I determine whether a packet belongs to IP addresses of websites?以及如何确定一个数据包是否属于网站的 IP 地址?
1 个解决方案
解决方案1
0 已采纳 2020-05-18 20:46:49
In short, you need to简而言之,您需要
- Open the file打开文件
- Split the text into packets将文本拆分为数据包
- Check whether the desired string is in the packet with python's
in.使用 python 的in检查所需的字符串是否在数据包中。
In this example, we'll search for the strings SYN, ACK, and a google IP.在此示例中,我们将搜索字符串 SYN、ACK 和 google IP。
import re
def get_packets(filename):
with open(filename) as f:
text = f.read()
# Based on the sample file, packet continuations are over multiple lines
# So split packets based on starting with a newline and then non-space char
text_packets = re.findall(r'\n\S[\s\S]*(?=\n\S)', text)
print("Packets found are", text_packets)
def find_info(text_packets):
# Keep track of the ith packet to print that number
ith = 1
# Let's use one of google's IP for the example
google_ip = "172.217.1.142"
for tp in text_packets:
if "SYN" in tp:
print(ith, "packet contains SYN")
if "ACK" in tp:
print(ith, "packet contains ACK")
if google_ip in tp:
print("Traffic to google found")
ith += 1
def main():
text_packets = get_packets("temp")
find_info(text_packets)
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.
相关问题
如何使用python从.txt文件中提取两列? - How can I extract two columns from a .txt file with python?
如何从txt文件提取某些内容? - How can I extract certain content from a txt file?
如何从 .txt 文件中提取特定数据? - How can i extract the spesific data from .txt file?
如何从 pcap 文件中提取所有数据包的 TCP 标头? - How can I extract TCP header for all the packets from a pcap file?
如何从e-prime输出(.txt文件)提取特定数据 - How can I extract specific data from e-prime output (.txt file)
如何从 a.txt 文件中提取数据并将其存储在 2 个单独的变量中? - How can i extract data from a .txt file and store it in 2 separate variables?
如何提取.txt文件中特定范围的行? - How can i extract specific range of lines in a .txt file?
如何从巨大的txt文件中提取模式 - How do I extract the pattern out from huge txt file
如何从txt文件中提取数字 - How to extract number from a txt file
如何从txt文件中提取值 - how to extract value from txt file
相关标签