pcapscan使用libpcap从pcap文件中读取数据包,并根据一个规则文件中指定的多个正则表达式对报文进行匹配,并输出匹配结果和一些统计信息。pcapscan使用并对比了两种匹配模式:BLOCK和STREAM。BLOCK模式时它对单个数据包进行匹配;而STREAM模式下它通过五元组将数据包进行简单分流,并对每条流中的数据进行匹配。STREAM模式可以命中...
//Scan each packet (in the ordering given in the PCAP file) through//Hyperscan using the streaming interface.voidscanStreams() {for(size_t i =0; i != packets.size(); ++i) {conststd::string&pkt =packets[i];hs_error_t err=hs_scan_stream(streams[stream_ids[i]], pkt.c_str(), ...
High-performance regular expression matching library - Blaming hyperscan/examples/pcapscan.cc at master · intel/hyperscan
High-performance regular expression matching library - hyperscan/examples/pcapscan.cc at c00683d73916e39f01b0d418f686c8b5c379159c · intel/hyperscan
master chimera cmake doc examples CMakeLists.txt README.md patbench.cc pcapscan.cc simplegrep.c include src tools unit util .clang-format .gitignore CHANGELOG.md CMakeLists.txt COPYING LICENSE README.md hs.def hs_runtime.def libhs.pc.inBreadcrumbs hyperscan /examples / pcapscan.cc Latest...