Estimating the response time of a server using Python or regex

Navigation
2

I created a virtualized environment with an Apache server (running in Debian) and several attacking machines running Debian as well. We used VMware Workstation.

Server IP: 192.168.91.5

I have dump file (PCAP) collected with tcpdump. Is there any way to estimate (or calculate) server response time every 60 seconds? The IP addresses of the attackers are of the form 192.168.91.X

PCAP file example:

SamplePCAPfiles:

link

I tried to use tcprstat but the result always gives zero, which is undoubtedly wrong: / p> 

tcprstat -r semAtaques.pcap -f '%n\n' -p 80 -t 1 -n 0
    
asked by anonymous 20.09.2017 / 18:18

2 answers

3

You can try to use libs ready for this, I found two:

pypcapfile

To install use pip : 

pip install pypcapfile

An example usage: 

from pcapfile import savefile
testcap = open('1.pcap', 'rb')
capfile = savefile.load_savefile(testcap, verbose=True)
print capfile

pcap-parser

To install use pip : 

pip install pcap-parser

It works by command line (which can be availed), simple example: 

parse_pcap 1.pcap

The list of other commands is at link

    
21.09.2017 / 00:04
2

Resolve using a free program:

Response Time Viewer for Wireshark:

link

It provides, among other things, application and network response time!

    
26.09.2017 / 16:07
Compare variable more than once, without repeating it Why is it not recommended to use the event in C # project with WPF and MVVM?