hrbrmstr/tsharrk
Tools to Make Analyses Using 'tshark' Easier

Package index
Search the hrbrmstr/tsharrk package
Vignettes
Functions
19
Source code
11
Man pages
9
Home
/
GitHub
/
hrbrmstr/tsharrk
/
R/tshark-hosts.R

R/tshark-hosts.R
In hrbrmstr/tsharrk: Tools to Make Analyses Using 'tshark' Easier

Defines functions tshark_hosts

Documented in tshark_hosts 

#' Extract hostname/IP table (if any) from a PCAP
#'
#' @param pcap path to PCAP file ([path.expand()] will be called on this value)
#' @return data frame
#' @export
#' @examples
#' tryCatch(
#'   tshark_hosts(system.file("pcap", "http.pcap", package = "tsharrk")),
#'   error = function(e) message("No tshark")
#' )
tshark_hosts <- function(pcap) {

  pcap <- path.expand(pcap[1])

  if (!file.exists(pcap)) {
    stop(sprintf("Cannont locate %s", pcap), call.=FALSE)
  }

  tshark_exec(
    args = c("-q", "-z", "hosts", "-r", pcap)
  ) -> res

  if (res$status != 0) {
    stop("Error retrieving hosts from PCAP.", call.=FALSE)
  }

  host_table_raw <- tail(res$stdout, -4)

  if (length(host_table_raw) == 0) {
    data.frame(
      ip = character(0),
      host = character(0)
    )
  } else {
    read.csv(
      text = paste0(host_table_raw, collapse = "\n"),
      sep = "\t",
      header = FALSE,
      col.names = c("ip", "host"),
      colClasses = c("character", "character")
    )
  }


}
hrbrmstr/tsharrk documentation built on Dec. 20, 2021, 4:49 p.m.

R Package Documentation

rdrr.io home R language documentation Run R code online

Browse R Packages

CRAN packages Bioconductor packages R-Forge packages GitHub packages

We want your feedback!

Note that we can't provide technical support on individual packages. You should contact the package authors for that.
GitHub issue tracker
ian@mutexlabs.com
Personal blog

 
Embedding an R snippet on your website

Add the following code to your website.

For more information on customizing the embed code, read Embedding Snippets.

Close