NETCAP
NETCAP
Overview
GitHub
Homepage
GoDoc
Overview
Protocol Support
Specification
Installation
Quickstart
Packet Collection
Audit Record Labeling
HTTP Proxy
USB Capture
Payload Capture
Distributed Collection
Workers
Filtering and Export
Downloads
Internals
Metrics
Python Integration
FAQ
Extension
Contributing
License
Powered by GitBook

Python Integration

Read Netcap Audit records from Python

Source Code

The Python library for interacting with netcap audit records has been published here:

Usage

Read into python dictionary

Currently it is possible to retrieve the audit records as python dictionary:

#!/usr/bin/python
​
import pynetcap as nc
​
reader = nc.NCReader('pcaps/HTTP.ncap.gz')
​
reader.read(dataframe=False)
print("RECORDS:")
print(reader.records)

Read into pandas dataframe

Retrieving the audit records as pandas dataframe:

#!/usr/bin/python
​
import pynetcap as nc
​
reader = nc.NCReader('pcaps/HTTP.ncap.gz')
​
reader.read(dataframe=True)
print("[INFO] completed reading the audit record file:", reader.filepath)
print("DATAFRAME:")
print(reader.df)
Previous
Metrics
Next
FAQ
Last updated -5
Contents
Source Code
Usage
Read into python dictionary
Read into pandas dataframe