--
Best regards,
Den.
if you do not need to actually capture the "live" traffic and only
want to reproduce it from a pcap file and do not need to monitor the
server behaviour, then HotFuzz is not the right tool for you.
However, you can still use Peach (upon which HotFuzz is built). Just
take your pcap, convert it into PDML (this can be done using
Wireshark) and then convert the PDML to the DataModel XML using
peachshark (that comes with Peach...not quite sure whether it was not
renamed since I used it a few years back when programming HotFuzz).
Peach can then use the automatically created DataModels and replay and
fuzz the traffic for you.
Still I do not really get the reason why would you need this if you
are not interested in the servers behaviour.
Hope this helps,
Jan
Something to think about in future versions of hotfuzz would be having
the server agent capable of performing kernel debugging and the fuzzing
session ending when a fault is hit.
mike