typesense-pcap-demo

Typesense + Tshark PCAP = Magic!

Requirements

• nodejs 12.x+
• docker
• tshark

Start Typesense

Run a Typesense instance using docker

$ npm install
$ npm run typesenseServer

Configure your server and collection settings using the .env file

Import PCAP Dataset

Create & Import custom PCAP data/schema using tshark (ek json)

$ tshark -T ek -j "port 22" -P -V -x -c 100 | sed '/^{"index/d' > data/pcap.json
$ npm run populateTypesenseIndex

Start App

Bootstrap your Application

$ npm start

Browse to http://localhost:3000 to search and view your PCAP data.