After finishing analyzing and storing the statistics of the pcap file in 1, the reported duration is wrong. The reported statistics are:
PCAP FILE STATISTICS SUMMARY ------------------------------ Total packet count: 78329145 packets Recognized packets: 78329145 packets Unrecognized packets: 0 PDUs % Recognized packets: 100.0 % % Unrecognized packets: 0.0 % Last unknown PDU: None Capture duration: 0.4295 seconds ------------------------------------------------------------
Examining the database in query mode, we can see:
SELECT timestampLastPacket FROM file_statistics; Query returned 1 record: +----------------------------+ | timestampLastPacket | +----------------------------+ | 2018-04-04 07:15:00.331786 | +----------------------------+ > SELECT timestampFirstPacket FROM file_statistics; Query returned 1 record: +----------------------------+ | timestampFirstPacket | +----------------------------+ | 2018-04-04 07:00:00.448274 | +----------------------------+
Fixed. Merge into master coming with SMBScan fixes.
Fixed in commit 971df14819.
971df14819
EDIT: Off-by-one-second error fixed in pull request #131.
After finishing analyzing and storing the statistics of the pcap file in 1, the reported duration is wrong. The reported statistics are:
Examining the database in query mode, we can see:
Fixed. Merge into master coming with SMBScan fixes.
Fixed in commit
971df14819.EDIT: Off-by-one-second error fixed in pull request #131.