tags:

views:

98

answers:

2
Q: 

Python and NGREP

I want to be able to start and stop an NGREP process from inside my python code. I really dont have experience with python on a system level.

Normally I run NGREP from the command line, but I would like to be able to run it from a script every hour and capture the trace and then process the results.

Can anyone point me in the direction of how to achieve this.

By the way, I really just need to be able to do a packet capture, perhaps Python has builtin capabilities for this, maybe tcpdump?

Thanks.

A: 

Look up threading.Timer and pexpect. If you don't want to install pexpect, you can use subprocess.Popen instead.

EDIT: In response to the comment:

import os
from signal import SIGTERM, SIGKILL
os.kill(pid, SIGTERM) #you can also send SIGKILL instead of SIGTERM. 
#You might also have to put this call in a try block and catch OSError
#Only available on *NIX

EDIT2: If you want to hand-roll the packet capture, use pypcap. This should almost certainly do what you want, since tcpdump uses libpcap itself.

Chinmay Kanchi  2010-02-25 16:17:09
I'm not sure why a threading.Timer would be useful in this case.
nosklo  2010-02-25 16:49:41
Because he wants to run it every hour... So, create a `threading.Timer(3600, runNgrep, args, kwargs)` to run the program and create another `threading.Timer` when the program finishes... Where `runNgrep` is a function taking `args` and `kwargs` as arguments, obviously.
Chinmay Kanchi  2010-02-25 17:25:33
These are good suggestions. Any idea how to kill the process though? I see the docs. it seems like send_signal(), terminate() and exit() methods are only available in python 2.6 I am running python 2.5. Following your suggestion, I use subprocess.Popen then get the process id and then run subprocess.Popen with a kill pid to ed the process. Not so elegant, perhaps there is a better way to terminate the process?
Dave  2010-02-25 20:33:42
A: 

its not in-built, but you can try Packet Capture and Injection Library

ghostdog74  2010-02-25 16:45:23

related questions

Programmatically talking to a Serial Port in OS X or Linux
Best ways to teach a beginner to program?
Calling a Function From a String With the Function's Name in Python
An executable Python app
Text Editor For Linux (Besides Vi)?
What Hosting Service is best for Django applications?
File size differences after copying a file to a server vía FTP
Python: what is the difference between (1,2,3) and [1,2,3], and when should I use each?
Python: What OS am I running on?
How do I make a menu in python that does not require the user to press (enter) to make a selection?
How do you express binary literals in Python?
What is the most efficient graph data structure in Python?
Adding a Method to an Existing Object
How to learn Python: Good Example Code?
How do I use Python's itertools.groupby()?
Python and MySQL
Class views in Django
Is there an IDE that provides code completion for Python
Using 'in' to match an attribute of Python objects in an array
cx_Oracle - what is the best way to iterate over a result set?
cx_Oracle - How do I access Oracle from Python?
Continuous Integration System for a Python Codebase
Get a preview jpeg of a pdf on windows?
How can I find the full path to a font from its display name on a Mac?
XML Processing in Python