In CapAnalysis is available a powerful set of filters for quick analysis. The filters are:
Here we describe just some of filters’s features. For next examples we used the PCAP hptcp.pcap (from Capture the hacker 2013 competition). Starting from the “date and time” filter the CapAnalysis page “Per Hour” displays the data:
From the figure we note that at the 7am there is a particular network traffic. Filtering the dataset to the 7am it is possible to investigate analyzing only the flows which were present in that time date.
Another example can be identify all the flows, UDP or TCP, where the data sent are more than the data received. In this case the filter used is “data size“.
You can experience these functionalities freely downloading CapAnalysis.