Portcullis Labs » TAV https://labs.portcullis.co.uk Research and Development en-US hourly 1 http://wordpress.org/?v=3.8.5 UDP Protocol Analysis – Interactive Python Tool https://labs.portcullis.co.uk/tools/udp-protocol-analysis-interactive-python-tool/ https://labs.portcullis.co.uk/tools/udp-protocol-analysis-interactive-python-tool/#comments Mon, 09 Sep 2013 12:56:55 +0000 https://labs.portcullis.co.uk/?p=1661 UDP protocol analysis is a python module which can be used in scripted analysis or interactively using ipython. Some time ago I was tasked with understanding a protocol I had no information about. I wanted to see: Distribution of packet sizes and positions in a conversation; How payloads could be broken down into fields to […]

The post UDP Protocol Analysis – Interactive Python Tool appeared first on Portcullis Labs.

]]> UDP protocol analysis is a python module which can be used in scripted analysis or interactively using ipython.

Some time ago I was tasked with understanding a protocol I had no information about.

I wanted to see:

  • Distribution of packet sizes and positions in a conversation;
  • How payloads could be broken down into fields to get an idea of the structure;
  • What patterns could be identified in fields;
  • A state machine for fields which appear to encode state.
Protoanal Tar
protoanal.tar.gz
September 9, 2013
4.7 KiB
MD5 hash: e5672370f139e00ba6e8286ca217b690
Details

The post UDP Protocol Analysis – Interactive Python Tool appeared first on Portcullis Labs.

]]> https://labs.portcullis.co.uk/tools/udp-protocol-analysis-interactive-python-tool/feed/ 0