UDP protocol analysis is a python module which can be used in scripted analysis or interactively using ipython.
Some time ago I was tasked with understanding a protocol I had no information about.
I wanted to see:
- Distribution of packet sizes and positions in a conversation;
- How payloads could be broken down into fields to get an idea of the structure;
- What patterns could be identified in fields;
- A state machine for fields which appear to encode state.
