I published the following diary on isc.sans.org: “Truncating Payloads and Anonymizing PCAP files“:
Sometimes, you may need to provide PCAP files to third-party organizations like a vendor support team to investigate a problem with your network. I was looking for a small tool to anonymize network traffic but also to restrict data to packet headers (and drop the payload). Google pointed me to a tool called ‘TCPurify’… [Read more]
[The post [SANS ISC] Truncating Payloads and Anonymizing PCAP files has been first published on /dev/random]
Article Link: https://blog.rootshell.be/2018/08/16/sans-isc-truncating-payloads-and-anonymizing-pcap-files/