You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
We currently have a few artifacts to collect network traffic from the endpoint, but these are usually running another tool and a bit clunky. This feature request is for a process monitor like capability that may collect network packets and store a small cache ready to collect if desired from the endpoint.
We currently have a few artifacts to collect network traffic from the endpoint, but these are usually running another tool and a bit clunky. This feature request is for a process monitor like capability that may collect network packets and store a small cache ready to collect if desired from the endpoint.
Netresec has a tool called PacketCache that does this kind of workflow.
https://www.netresec.com/?page=PacketCache
Might be easier to do nowdays with eBPF.
The text was updated successfully, but these errors were encountered: