Simple python scripts that parse through PCAP file
- Looking for the number of DTLS messages per address (assumes IPv6 address). makes csv file, prints 10 most handshaked addresses
- Looking for the timestamps in DTLS client_hello messages, makes csv file
- Looking for different layers (IP, UDP vs IP, ICMP), prints the different layers seen, and how many packets
These help to check a network pcap file, to find the interesting addresses or protocols to search for in wireshark
DEPENDENCIES
- pyshark library