Weekly Report 26/05/2015




To get my application using an open-source collector instead of nProbe, I had the idea of writing a Python program to parse the output files by nfcapd. nfcapd has the option to call a program when a new file becomes available, so I call nfdump and read all flows from the new file and output them as comma separated strings. I then pipe this output to my Python program so save to a database. This solution will also let me control the size of the database as well as deleting flows that are older than a certain date.