Argus vs SiLK
George Jones
fooologist at gmail.com
Thu Jul 29 05:48:59 EDT 2010
On Thu, Jul 29, 2010 at 5:15 AM, Carter Bullard <carter at qosient.com> wrote:
> Chris,
> I think you missed the point. George used to use YAF+SiLK, but has
> switched to Argus.
> I don't think he is going to switch back this week, but I don't want to
> talk for George.
>
Running in parallel ... I have a bunch of PySiLK scripts that I still want
to use.
Primarily, i just got tired of having to match halves of TCP flows by
hand/with PySiLK. You CAN do it,
it's just work I don't want to do.
The other point is that bi-flow generation is irrelevant unless you have
tools on the back end that can
process it.
---George (now, back to doing useful work...)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://pairlist1.pair.net/pipermail/argus/attachments/20100729/091a1ee2/attachment.html>
More information about the argus
mailing list