'stream' Category

• Rebuilding TCP streams with Ruby part 2: fuzzysort

  March 19, 2008

  This is part 2 of a series on rebuilding TCP streams using Ruby, for more information, visit the previous post: Rebuilding TCP streams with Ruby part 1: fuzzymatch In my previous post, I talked about using fuzzy sequence/acknowledge numbers to split a network capture file into streams. Using fuzzymatch was pretty successful for cutting streams […]

  posted in fuzzymatch, internet, rebuild, ruby, script, sequence, stream, tcp by Lee

• Rebuilding TCP streams with Ruby part 1: fuzzymatch

  March 11, 2008

  I have undertaken the (not so small) task of attempting to use Ruby to rebuild TCP data streams. I was originally planning on using ruby-libnids, but after running into considerable trouble with dynamic library linking on OSX, I decided it’d be a good experiment to write my own. This is not a small feat. In […]

  posted in fuzzymatch, internet, rebuild, ruby, script, sequence, stream, tcp by Lee