CINXE.COM
Introducing PCAP Data for Investigators
<!doctype html><!--[if lt IE 7]> <html class="no-js lt-ie9 lt-ie8 lt-ie7" lang="en-in" > <![endif]--><!--[if IE 7]> <html class="no-js lt-ie9 lt-ie8" lang="en-in" > <![endif]--><!--[if IE 8]> <html class="no-js lt-ie9" lang="en-in" > <![endif]--><!--[if gt IE 8]><!--><html class="no-js" lang="en-in"><!--<![endif]--><head> <meta charset="utf-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge,chrome=1"> <meta name="author" content="Himanshu Khandelwal"> <meta name="description" content="Learn how PCAP aids LEAs in investigations by providing detailed network data for forensic analysis, timeline reconstruction, and cybercrime attribution."> <meta name="generator" content="HubSpot"> <title>Introducing PCAP Data for Investigators</title> <link rel="shortcut icon" href="https://blog.clear-trail.com/hubfs/ClearTrail_January2020/Images/favicon-32x32.png"> <meta name="viewport" content="width=device-width, initial-scale=1"> <script src="/hs/hsstatic/jquery-libs/static-1.1/jquery/jquery-1.7.1.js"></script> <script>hsjQuery = window['jQuery'];</script> <meta property="og:description" content="Learn how PCAP aids LEAs in investigations by providing detailed network data for forensic analysis, timeline reconstruction, and cybercrime attribution."> <meta property="og:title" content="Introducing PCAP Data for Investigators"> <meta name="twitter:description" content="Learn how PCAP aids LEAs in investigations by providing detailed network data for forensic analysis, timeline reconstruction, and cybercrime attribution."> <meta name="twitter:title" content="Introducing PCAP Data for Investigators"> <style> a.cta_button{-moz-box-sizing:content-box !important;-webkit-box-sizing:content-box !important;box-sizing:content-box !important;vertical-align:middle}.hs-breadcrumb-menu{list-style-type:none;margin:0px 0px 0px 0px;padding:0px 0px 0px 0px}.hs-breadcrumb-menu-item{float:left;padding:10px 0px 10px 10px}.hs-breadcrumb-menu-divider:before{content:'›';padding-left:10px}.hs-featured-image-link{border:0}.hs-featured-image{float:right;margin:0 0 20px 20px;max-width:50%}@media (max-width: 568px){.hs-featured-image{float:none;margin:0;width:100%;max-width:100%}}.hs-screen-reader-text{clip:rect(1px, 1px, 1px, 1px);height:1px;overflow:hidden;position:absolute !important;width:1px} </style> <link rel="stylesheet" href="/hs/hsstatic/BlogSocialSharingSupport/static-1.258/bundles/project.css"> <link rel="stylesheet" href="/hs/hsstatic/AsyncSupport/static-1.122/sass/rss_post_listing.css"> <script type="text/javascript"> _linkedin_partner_id = "930643"; window._linkedin_data_partner_ids = window._linkedin_data_partner_ids || []; window._linkedin_data_partner_ids.push(_linkedin_partner_id); </script><script type="text/javascript"> (function(){var s = document.getElementsByTagName("script")[0]; var b = document.createElement("script"); b.type = "text/javascript";b.async = true; b.src = "https://snap.licdn.com/li.lms-analytics/insight.min.js"; s.parentNode.insertBefore(b, s);})(); </script> <noscript> <img height="1" width="1" style="display:none;" alt="" src="https://px.ads.linkedin.com/collect/?pid=930643&amp;fmt=gif"> </noscript> <link rel="amphtml" href="https://blog.clear-trail.com/introducing-pcap-data-for-investigators?hs_amp=true"> <meta property="og:image" content="https://blog.clear-trail.com/hubfs/pexels-kampus-8353775.jpg"> <meta property="og:image:width" content="6016"> <meta property="og:image:height" content="4016"> <meta name="twitter:image" content="https://blog.clear-trail.com/hubfs/pexels-kampus-8353775.jpg"> <meta property="og:url" content="https://blog.clear-trail.com/introducing-pcap-data-for-investigators"> <meta name="twitter:card" content="summary_large_image"> <link rel="canonical" href="https://blog.clear-trail.com/introducing-pcap-data-for-investigators"> <meta property="og:type" content="article"> <link rel="alternate" type="application/rss+xml" href="https://blog.clear-trail.com/rss.xml"> <meta name="twitter:domain" content="blog.clear-trail.com"> <meta name="twitter:site" content="@CleartrailT"> <script src="//platform.linkedin.com/in.js" type="text/javascript"> lang: en_US </script> <meta http-equiv="content-language" content="en-in"> <link rel="stylesheet" href="//7052064.fs1.hubspotusercontent-na1.net/hubfs/7052064/hub_generated/template_assets/DEFAULT_ASSET/1738858830054/template_layout.min.css"> <link rel="stylesheet" href="//blog.clear-trail.com/hubfs/hub_generated/template_assets/1/24160042454/1735036033114/template_ClearTrail_January2020-style.min.css"> </head> <body class="blog hs-content-id-182754103655 hs-blog-post hs-blog-id-23515705638" style=""> <div class="header-container-wrapper"> <div class="header-container container-fluid"> <div class="row-fluid-wrapper row-depth-1 row-number-1 "> <div class="row-fluid "> <div class="span12 widget-span widget-type-global_group " style="" data-widget-type="global_group" data-x="0" data-w="12"> <div class="" data-global-widget-path="generated_global_groups/24160052300.html"><div class="row-fluid-wrapper row-depth-1 row-number-1 "> <div class="row-fluid "> <div class="span12 widget-span widget-type-cell cm-header" style="" data-widget-type="cell" data-x="0" data-w="12"> <div class="row-fluid-wrapper row-depth-1 row-number-2 "> <div class="row-fluid "> <div class="span12 widget-span widget-type-custom_widget " style="" data-widget-type="custom_widget" data-x="0" data-w="12"> <div id="hs_cos_wrapper_module_173743717096750" class="hs_cos_wrapper hs_cos_wrapper_widget hs_cos_wrapper_type_module" style="" data-hs-cos-general-type="widget" data-hs-cos-type="module"><!-- Google tag (gtag.js) --> <script async src="https://www.googletagmanager.com/gtag/js?id=G-DGXYGCFHR8"></script> <script> window.dataLayer = window.dataLayer || []; function gtag(){dataLayer.push(arguments);} gtag('js', new Date()); gtag('config', 'G-DGXYGCFHR8'); </script></div> </div><!--end widget-span --> </div><!--end row--> </div><!--end row-wrapper --> <div class="row-fluid-wrapper row-depth-1 row-number-3 "> <div class="row-fluid "> <div class="span12 widget-span widget-type-cell page-center" style="" data-widget-type="cell" data-x="0" data-w="12"> <div class="row-fluid-wrapper row-depth-1 row-number-4 "> <div class="row-fluid "> <div class="span4 widget-span widget-type-custom_widget cm-logo" style="" data-widget-type="custom_widget" data-x="0" data-w="4"> <div id="hs_cos_wrapper_module_1578477470521126" class="hs_cos_wrapper hs_cos_wrapper_widget hs_cos_wrapper_type_module widget-type-rich_text" style="" data-hs-cos-general-type="widget" data-hs-cos-type="module"><span id="hs_cos_wrapper_module_1578477470521126_" class="hs_cos_wrapper hs_cos_wrapper_widget hs_cos_wrapper_type_rich_text" style="" data-hs-cos-general-type="widget" data-hs-cos-type="rich_text"><img src="https://blog.clear-trail.com/hs-fs/hubfs/white-CT-logo.png?width=180&height=33&name=white-CT-logo.png" width="180" height="33" loading="lazy" alt="ClearTrail" style="height: auto; max-width: 100%; width: 180px;" srcset="https://blog.clear-trail.com/hs-fs/hubfs/white-CT-logo.png?width=90&height=17&name=white-CT-logo.png 90w, https://blog.clear-trail.com/hs-fs/hubfs/white-CT-logo.png?width=180&height=33&name=white-CT-logo.png 180w, https://blog.clear-trail.com/hs-fs/hubfs/white-CT-logo.png?width=270&height=50&name=white-CT-logo.png 270w, https://blog.clear-trail.com/hs-fs/hubfs/white-CT-logo.png?width=360&height=66&name=white-CT-logo.png 360w, https://blog.clear-trail.com/hs-fs/hubfs/white-CT-logo.png?width=450&height=83&name=white-CT-logo.png 450w, https://blog.clear-trail.com/hs-fs/hubfs/white-CT-logo.png?width=540&height=99&name=white-CT-logo.png 540w" sizes="(max-width: 180px) 100vw, 180px"></span></div> </div><!--end widget-span --> <div class="span8 widget-span widget-type-custom_widget custom-menu-primary" style="" data-widget-type="custom_widget" data-x="4" data-w="8"> <div id="hs_cos_wrapper_module_151811933987828" class="hs_cos_wrapper hs_cos_wrapper_widget hs_cos_wrapper_type_module widget-type-menu" style="" data-hs-cos-general-type="widget" data-hs-cos-type="module"> <span id="hs_cos_wrapper_module_151811933987828_" class="hs_cos_wrapper hs_cos_wrapper_widget hs_cos_wrapper_type_menu" style="" data-hs-cos-general-type="widget" data-hs-cos-type="menu"><div id="hs_menu_wrapper_module_151811933987828_" class="hs-menu-wrapper active-branch flyouts hs-menu-flow-horizontal" role="navigation" data-sitemap-name="default" data-menu-id="24160134129" aria-label="Navigation Menu"> <ul role="menu"> <li class="hs-menu-item hs-menu-depth-1 hs-item-has-children" role="none"><a href="javascript:void(0)" aria-haspopup="true" aria-expanded="false" role="menuitem">Resources</a> <ul role="menu" class="hs-menu-children-wrapper"> <li class="hs-menu-item hs-menu-depth-2" role="none"><a href="https://blog.clear-trail.com/" role="menuitem">Blog</a></li> <li class="hs-menu-item hs-menu-depth-2" role="none"><a href="https://www.clear-trail.com/events/" role="menuitem">Events</a></li> <li class="hs-menu-item hs-menu-depth-2" role="none"><a href="https://www.clear-trail.com/webinars/" role="menuitem">Webinars</a></li> <li class="hs-menu-item hs-menu-depth-2" role="none"><a href="https://www.clear-trail.com/knowledge-center/" role="menuitem">Knowledge Centre</a></li> </ul></li> <li class="hs-menu-item hs-menu-depth-1 hs-item-has-children" role="none"><a href="javascript:void(0)" aria-haspopup="true" aria-expanded="false" role="menuitem">Products </a> <ul role="menu" class="hs-menu-children-wrapper"> <li class="hs-menu-item hs-menu-depth-2" role="none"><a href="https://www.clear-trail.com/products/intelligence-fusion-platform/" role="menuitem">Intelligence Fusion Platform</a></li> <li class="hs-menu-item hs-menu-depth-2" role="none"><a href="https://www.clear-trail.com/products/lawful-interception/" role="menuitem">Lawful Interception </a></li> <li class="hs-menu-item hs-menu-depth-2" role="none"><a href="https://www.carbn.ai/" role="menuitem" target="_blank" rel="noopener">CARBN.AI™</a></li> </ul></li> <li class="hs-menu-item hs-menu-depth-1 hs-item-has-children" role="none"><a href="javascript:void(0)" aria-haspopup="true" aria-expanded="false" role="menuitem">Company </a> <ul role="menu" class="hs-menu-children-wrapper"> <li class="hs-menu-item hs-menu-depth-2" role="none"><a href="https://clear-trail.com/about-us/" role="menuitem">About Us</a></li> <li class="hs-menu-item hs-menu-depth-2" role="none"><a href="https://www.clear-trail.com/our-culture/" role="menuitem">Our Culture</a></li> </ul></li> <li class="hs-menu-item hs-menu-depth-1" role="none"><a href="https://www.clear-trail.com/contact-us/" role="menuitem">Contact Us</a></li> <li class="hs-menu-item hs-menu-depth-1" role="none"><a href="https://www.clear-trail.com/partner/" role="menuitem">Partner with Us</a></li> </ul> </div></span></div> </div><!--end widget-span --> </div><!--end row--> </div><!--end row-wrapper --> </div><!--end widget-span --> </div><!--end row--> </div><!--end row-wrapper --> </div><!--end widget-span --> </div><!--end row--> </div><!--end row-wrapper --> </div> </div><!--end widget-span --> </div><!--end row--> </div><!--end row-wrapper --> </div><!--end header --> </div><!--end header wrapper --> <div class="body-container-wrapper"> <div class="body-container container-fluid"> <div class="row-fluid-wrapper row-depth-1 row-number-1 "> <div class="row-fluid "> <div class="span12 widget-span widget-type-cell page-center content-wrapper" style="padding-top:80px" data-widget-type="cell" data-x="0" data-w="12"> <div class="row-fluid-wrapper row-depth-1 row-number-2 "> <div class="row-fluid "> <div class="span12 widget-span widget-type-cell page-center content-wrapper" style="" data-widget-type="cell" data-x="0" data-w="12"> <div class="row-fluid-wrapper row-depth-1 row-number-3 "> <div class="row-fluid "> <div class="span9 widget-span widget-type-cell " style="" data-widget-type="cell" data-x="0" data-w="9"> <div class="row-fluid-wrapper row-depth-1 row-number-4 "> <div class="row-fluid "> <div class="span12 widget-span widget-type-cell blog-content" style="" data-widget-type="cell" data-x="0" data-w="12"> <div class="row-fluid-wrapper row-depth-2 row-number-1 "> <div class="row-fluid "> <div class="span12 widget-span widget-type-custom_widget blog-detail-box" style="" data-widget-type="custom_widget" data-x="0" data-w="12"> <div id="hs_cos_wrapper_module_1523032069834331" class="hs_cos_wrapper hs_cos_wrapper_widget hs_cos_wrapper_type_module widget-type-blog_content" style="" data-hs-cos-general-type="widget" data-hs-cos-type="module"> <div class="blog-section"> <div class="blog-post-wrapper cell-wrapper"> <div class="blog-section"> <div class="blog-post-wrapper cell-wrapper"> <div class="section post-header"> <h1><span id="hs_cos_wrapper_name" class="hs_cos_wrapper hs_cos_wrapper_meta_field hs_cos_wrapper_type_text" style="" data-hs-cos-general-type="meta_field" data-hs-cos-type="text">Introducing PCAP Data for Investigators</span></h1> <div id="hubspot-author_data" class="hubspot-editable" data-hubspot-form-id="author_data" data-hubspot-name="Blog Author"> <span class="hs-author-label">Posted by</span> <a class="author-link" href="https://blog.clear-trail.com/author/himanshu-khandelwal">Himanshu Khandelwal</a> on 14 November, 2024 <!-- --> </div> </div> <span id="hs_cos_wrapper_blog_social_sharing" class="hs_cos_wrapper hs_cos_wrapper_widget hs_cos_wrapper_type_blog_social_sharing" style="" data-hs-cos-general-type="widget" data-hs-cos-type="blog_social_sharing"> <div class="hs-blog-social-share"> <ul class="hs-blog-social-share-list"> <li class="hs-blog-social-share-item hs-blog-social-share-item-twitter"> <!-- Twitter social share --> <a href="https://twitter.com/share" class="twitter-share-button" data-lang="en" data-url="https://blog.clear-trail.com/introducing-pcap-data-for-investigators" data-size="medium" data-text="Introducing PCAP Data for Investigators">Tweet</a> </li> <li class="hs-blog-social-share-item hs-blog-social-share-item-linkedin"> <!-- LinkedIn social share --> <script type="IN/Share" data-url="https://blog.clear-trail.com/introducing-pcap-data-for-investigators" data-showzero="true" data-counter="right"></script> </li> <li class="hs-blog-social-share-item hs-blog-social-share-item-facebook"> <!-- Facebook share --> <div class="fb-share-button" data-href="https://blog.clear-trail.com/introducing-pcap-data-for-investigators" data-layout="button_count"></div> </li> </ul> </div> </span> <div class="hs-featured-image-wrapper-detail"> <img src="https://blog.clear-trail.com/hubfs/pexels-kampus-8353775.jpg" class="hs-featured-image-detail" alt=""> </div> <div class="section post-body"> <span id="hs_cos_wrapper_post_body" class="hs_cos_wrapper hs_cos_wrapper_meta_field hs_cos_wrapper_type_rich_text" style="" data-hs-cos-general-type="meta_field" data-hs-cos-type="rich_text"><p><strong><span data-contrast="auto">Packet Capture (PCAP)</span></strong><span data-contrast="auto"> is a critical tool in network analysis and cybersecurity investigations, offering detailed records of network communications. For law enforcement officials, understanding PCAP is essential for conducting thorough digital investigations, tracing cybercrimes, and gathering forensic evidence.</span><span data-ccp-props="{}"> </span></p> <!--more--> <h3><strong><span data-contrast="auto">What is PCAP?</span></strong><span data-ccp-props="{}"> </span></h3> <p><span data-contrast="auto">PCAP refers to the process of capturing and storing data packets traveling over a network. These packets are intercepted and saved in PCAP files, which contain raw data that can be analysed to understand network activities. The PCAP file format is widely used due to its compatibility with various analysis tools, making it a standard in network forensics.</span><span data-ccp-props="{}"> </span></p> <h3><strong><span data-contrast="auto">Structure of a PCAP File</span></strong><span data-ccp-props="{}"> </span></h3> <p><span data-contrast="auto">A typical PCAP file consists of:</span><span data-ccp-props="{}"> </span></p> <ul> <li data-leveltext="" data-font="Symbol" data-listid="1" data-list-defn-props="{"335552541":1,"335559685":720,"335559991":360,"469769226":"Symbol","469769242":[8226],"469777803":"left","469777804":"","469777815":"multilevel"}" aria-setsize="-1" data-aria-posinset="1" data-aria-level="1"><strong><span data-contrast="auto">Global Header</span></strong><span data-contrast="auto">: Contains metadata about the file format and timestamp precision, crucial for timeline analysis.</span><span data-ccp-props="{}"> </span></li> </ul> <ul> <li data-leveltext="" data-font="Symbol" data-listid="1" data-list-defn-props="{"335552541":1,"335559685":720,"335559991":360,"469769226":"Symbol","469769242":[8226],"469777803":"left","469777804":"","469777815":"multilevel"}" aria-setsize="-1" data-aria-posinset="2" data-aria-level="1"><strong><span data-contrast="auto">Packet Headers</span></strong><span data-contrast="auto">: Provide details about each packet, including capture time and packet length.</span><span data-ccp-props="{}"> </span></li> </ul> <ul> <li data-leveltext="" data-font="Symbol" data-listid="1" data-list-defn-props="{"335552541":1,"335559685":720,"335559991":360,"469769226":"Symbol","469769242":[8226],"469777803":"left","469777804":"","469777815":"multilevel"}" aria-setsize="-1" data-aria-posinset="3" data-aria-level="1"><strong><span data-contrast="auto">Packet Data</span></strong><span data-contrast="auto">: Contains the actual data being transmitted, which can include payloads such as emails or web pages.</span></li> </ul> <p><span data-contrast="auto"><img src="https://blog.clear-trail.com/hs-fs/hubfs/undefined.png?width=520&height=260&name=undefined.png" unselectable="on" loading="lazy" width="520" height="260" style="margin-left: auto; margin-right: auto; display: block;" srcset="https://blog.clear-trail.com/hs-fs/hubfs/undefined.png?width=260&height=130&name=undefined.png 260w, https://blog.clear-trail.com/hs-fs/hubfs/undefined.png?width=520&height=260&name=undefined.png 520w, https://blog.clear-trail.com/hs-fs/hubfs/undefined.png?width=780&height=390&name=undefined.png 780w, https://blog.clear-trail.com/hs-fs/hubfs/undefined.png?width=1040&height=520&name=undefined.png 1040w, https://blog.clear-trail.com/hs-fs/hubfs/undefined.png?width=1300&height=650&name=undefined.png 1300w, https://blog.clear-trail.com/hs-fs/hubfs/undefined.png?width=1560&height=780&name=undefined.png 1560w" sizes="(max-width: 520px) 100vw, 520px"></span></p> <h3><strong><span data-contrast="auto">Importance of PCAP in Investigations</span></strong><span data-ccp-props="{}"> </span></h3> <p><span data-contrast="auto">PCAP files are invaluable in cybersecurity investigations for several reasons:</span><span data-ccp-props="{}"> </span></p> <ul> <li data-leveltext="" data-font="Symbol" data-listid="2" data-list-defn-props="{"335552541":1,"335559685":720,"335559991":360,"469769226":"Symbol","469769242":[8226],"469777803":"left","469777804":"","469777815":"multilevel"}" aria-setsize="-1" data-aria-posinset="1" data-aria-level="1"><strong><span data-contrast="auto">Discover Hidden Links</span></strong><span data-ccp-props="{}"> </span></li> </ul> <p><span data-contrast="auto">Classify a wide range of protocols and applications, perform metadata analysis and generate actionable intelligence.</span><span data-ccp-props="{"335559685":720}"> </span></p> <ul> <li data-leveltext="" data-font="Symbol" data-listid="2" data-list-defn-props="{"335552541":1,"335559685":720,"335559991":360,"469769226":"Symbol","469769242":[8226],"469777803":"left","469777804":"","469777815":"multilevel"}" aria-setsize="-1" data-aria-posinset="2" data-aria-level="1"><strong><span data-contrast="auto">Reveal Patterns of Life</span></strong><span data-ccp-props="{}"> </span></li> </ul> <p><span data-contrast="auto">Build a 360-degree profile of persons of interest to uncover digital behaviour patterns and connect all the data points across cleartext data and encrypted data transactions to reveal what is truly actionable.</span><span data-ccp-props="{"335559685":720}"> </span></p> <h3><strong><span data-contrast="auto">Forensic Analysis with PCAP</span></strong><span data-ccp-props="{}"> </span></h3> <p><span data-contrast="auto">In forensic investigations, PCAP files serve as crucial evidence:</span><span data-ccp-props="{}"> </span></p> <ul> <li data-leveltext="" data-font="Symbol" data-listid="3" data-list-defn-props="{"335552541":1,"335559685":720,"335559991":360,"469769226":"Symbol","469769242":[8226],"469777803":"left","469777804":"","469777815":"multilevel"}" aria-setsize="-1" data-aria-posinset="1" data-aria-level="1"><strong><span data-contrast="auto">Evidentiary Value</span></strong><span data-contrast="auto">: They offer a detailed account of network activities during specific timeframes, essential for legal proceedings.</span><span data-ccp-props="{}"> </span></li> </ul> <ul> <li data-leveltext="" data-font="Symbol" data-listid="3" data-list-defn-props="{"335552541":1,"335559685":720,"335559991":360,"469769226":"Symbol","469769242":[8226],"469777803":"left","469777804":"","469777815":"multilevel"}" aria-setsize="-1" data-aria-posinset="2" data-aria-level="1"><strong><span data-contrast="auto">Timeline Reconstruction</span></strong><span data-contrast="auto">: Forensic experts use them to reconstruct events and derive actionable insights. </span><span data-ccp-props="{}"> </span></li> </ul> <ul> <li data-leveltext="" data-font="Symbol" data-listid="3" data-list-defn-props="{"335552541":1,"335559685":720,"335559991":360,"469769226":"Symbol","469769242":[8226],"469777803":"left","469777804":"","469777815":"multilevel"}" aria-setsize="-1" data-aria-posinset="3" data-aria-level="1"><strong><span data-contrast="auto">Attribution and Investigation</span></strong><span data-contrast="auto">: By examining packet contents, analysts can attribute actions to specific entities, aiding in criminal investigations.</span><span data-ccp-props="{}"> </span></li> </ul> <h3><strong><span data-contrast="auto">Conclusion</span></strong><span data-ccp-props="{}"> </span></h3> <p><span data-contrast="auto">PCAP is an indispensable tool for law enforcement officials involved in digital investigations. By capturing detailed network data, it provides critical insights into cyber activities, helping trace criminal actions and gather forensic evidence. Understanding how to effectively capture, analyse, and secure this data is crucial for successful investigations in today's digital landscape.</span><span data-ccp-props="{}"> </span></p></span> </div> <p id="hubspot-topic_data"> Topics: <a class="topic-link" href="https://blog.clear-trail.com/tag/software-for-cyber-intelligence">software for cyber intelligence</a>, <a class="topic-link" href="https://blog.clear-trail.com/tag/actionable-security-intelligence">actionable security intelligence</a>, <a class="topic-link" href="https://blog.clear-trail.com/tag/lawful-interception">lawful interception</a> </p> </div> </div> <!-- Optional: Blog Author Bio Box --> </div> </div> </div> </div><!--end widget-span --> </div><!--end row--> </div><!--end row-wrapper --> </div><!--end widget-span --> </div><!--end row--> </div><!--end row-wrapper --> </div><!--end widget-span --> <div class="span3 widget-span widget-type-cell blog-sidebar" style="" data-widget-type="cell" data-x="9" data-w="3"> <div class="row-fluid-wrapper row-depth-1 row-number-1 "> <div class="row-fluid "> <div class="span12 widget-span widget-type-custom_widget recent-post" style="" data-widget-type="custom_widget" data-x="0" data-w="12"> <div id="hs_cos_wrapper_module_1523032037008319" class="hs_cos_wrapper hs_cos_wrapper_widget hs_cos_wrapper_type_module widget-type-post_listing" style="" data-hs-cos-general-type="widget" data-hs-cos-type="module"> <span id="hs_cos_wrapper_module_1523032037008319_" class="hs_cos_wrapper hs_cos_wrapper_widget hs_cos_wrapper_type_post_listing" style="" data-hs-cos-general-type="widget" data-hs-cos-type="post_listing"><div class="block"> <h3>Recent Posts</h3> <div class="widget-module"> <ul class="hs-hash-269187562-1739040234550"> </ul> </div> </div> </span></div> </div><!--end widget-span --> </div><!--end row--> </div><!--end row-wrapper --> <div class="row-fluid-wrapper row-depth-1 row-number-2 "> <div class="row-fluid "> <div class="span12 widget-span widget-type-custom_widget recent-post" style="" data-widget-type="custom_widget" data-x="0" data-w="12"> <div id="hs_cos_wrapper_module_173207864820979" class="hs_cos_wrapper hs_cos_wrapper_widget hs_cos_wrapper_type_module widget-type-post_filter" style="" data-hs-cos-general-type="widget" data-hs-cos-type="module"> <span id="hs_cos_wrapper_module_173207864820979_" class="hs_cos_wrapper hs_cos_wrapper_widget hs_cos_wrapper_type_post_filter" style="" data-hs-cos-general-type="widget" data-hs-cos-type="post_filter"><div class="block"> <h3>Posts by Tag</h3> <div class="widget-module"> <ul> <li> <a href="https://blog.clear-trail.com/tag/actionable-security-intelligence">actionable security intelligence <span class="filter-link-count" dir="ltr">(2)</span></a> </li> <li> <a href="https://blog.clear-trail.com/tag/lawful-interception">lawful interception <span class="filter-link-count" dir="ltr">(2)</span></a> </li> <li> <a href="https://blog.clear-trail.com/tag/security-intelligence-software">security intelligence software <span class="filter-link-count" dir="ltr">(1)</span></a> </li> <li> <a href="https://blog.clear-trail.com/tag/software-for-cyber-intelligence">software for cyber intelligence <span class="filter-link-count" dir="ltr">(1)</span></a> </li> </ul> </div> </div> </span></div> </div><!--end widget-span --> </div><!--end row--> </div><!--end row-wrapper --> </div><!--end widget-span --> </div><!--end row--> </div><!--end row-wrapper --> </div><!--end widget-span --> </div><!--end row--> </div><!--end row-wrapper --> </div><!--end widget-span --> </div><!--end row--> </div><!--end row-wrapper --> </div><!--end body --> </div><!--end body wrapper --> <div class="footer-container-wrapper"> <div class="footer-container container-fluid"> <div class="row-fluid-wrapper row-depth-1 row-number-1 "> <div class="row-fluid "> <div class="span12 widget-span widget-type-global_group " style="" data-widget-type="global_group" data-x="0" data-w="12"> <div class="" data-global-widget-path="generated_global_groups/24160086131.html"><div class="row-fluid-wrapper row-depth-1 row-number-1 "> <div class="row-fluid "> <div class="span12 widget-span widget-type-cell cm-footer" style="" data-widget-type="cell" data-x="0" data-w="12"> <div class="row-fluid-wrapper row-depth-1 row-number-2 "> <div class="row-fluid "> <div class="span12 widget-span widget-type-cell page-center" style="" data-widget-type="cell" data-x="0" data-w="12"> <div class="row-fluid-wrapper row-depth-1 row-number-3 "> <div class="row-fluid "> <div class="span3 widget-span widget-type-custom_widget footer-btn-sec" style="" data-widget-type="custom_widget" data-x="0" data-w="3"> <div id="hs_cos_wrapper_module_151811918217345" class="hs_cos_wrapper hs_cos_wrapper_widget hs_cos_wrapper_type_module widget-type-rich_text" style="" data-hs-cos-general-type="widget" data-hs-cos-type="module"><span id="hs_cos_wrapper_module_151811918217345_" class="hs_cos_wrapper hs_cos_wrapper_widget hs_cos_wrapper_type_rich_text" style="" data-hs-cos-general-type="widget" data-hs-cos-type="rich_text"><h2>Transform your intelligence gathering paradigm</h2> <a href="https://www.clear-trail.com/contact-us.php?-ftr-redirect">Contact Us </a></span></div> </div><!--end widget-span --> <div class="span3 widget-span widget-type-custom_widget cm-footer-menu" style="" data-widget-type="custom_widget" data-x="3" data-w="3"> <div id="hs_cos_wrapper_module_1578478683700436" class="hs_cos_wrapper hs_cos_wrapper_widget hs_cos_wrapper_type_module widget-type-menu" style="" data-hs-cos-general-type="widget" data-hs-cos-type="module"> <span id="hs_cos_wrapper_module_1578478683700436_" class="hs_cos_wrapper hs_cos_wrapper_widget hs_cos_wrapper_type_menu" style="" data-hs-cos-general-type="widget" data-hs-cos-type="menu"><div id="hs_menu_wrapper_module_1578478683700436_" class="hs-menu-wrapper active-branch flyouts hs-menu-flow-horizontal" role="navigation" data-sitemap-name="default" data-menu-id="24160778027" aria-label="Navigation Menu"> <ul role="menu"> <li class="hs-menu-item hs-menu-depth-1 hs-item-has-children" role="none"><a href="javascript:;" aria-haspopup="true" aria-expanded="false" role="menuitem">Products</a> <ul role="menu" class="hs-menu-children-wrapper"> <li class="hs-menu-item hs-menu-depth-2" role="none"><a href="https://www.clear-trail.com/products/intelligence-fusion-platform/" role="menuitem">Intelligence Fusion Platform</a></li> <li class="hs-menu-item hs-menu-depth-2" role="none"><a href="https://www.clear-trail.com/products/lawful-interception/" role="menuitem">Lawful Interception</a></li> <li class="hs-menu-item hs-menu-depth-2" role="none"><a href="https://www.carbn.ai/" role="menuitem" target="_blank" rel="noopener">CARBN.AI™</a></li> </ul></li> </ul> </div></span></div> </div><!--end widget-span --> <div class="span3 widget-span widget-type-custom_widget cm-footer-menu" style="" data-widget-type="custom_widget" data-x="6" data-w="3"> <div id="hs_cos_wrapper_module_1578478688811443" class="hs_cos_wrapper hs_cos_wrapper_widget hs_cos_wrapper_type_module widget-type-menu" style="" data-hs-cos-general-type="widget" data-hs-cos-type="module"> <span id="hs_cos_wrapper_module_1578478688811443_" class="hs_cos_wrapper hs_cos_wrapper_widget hs_cos_wrapper_type_menu" style="" data-hs-cos-general-type="widget" data-hs-cos-type="menu"><div id="hs_menu_wrapper_module_1578478688811443_" class="hs-menu-wrapper active-branch flyouts hs-menu-flow-horizontal" role="navigation" data-sitemap-name="default" data-menu-id="24160805498" aria-label="Navigation Menu"> <ul role="menu"> <li class="hs-menu-item hs-menu-depth-1 hs-item-has-children" role="none"><a href="javascript:;" aria-haspopup="true" aria-expanded="false" role="menuitem">Company</a> <ul role="menu" class="hs-menu-children-wrapper"> <li class="hs-menu-item hs-menu-depth-2" role="none"><a href="https://www.clear-trail.com/about-us.php" role="menuitem">About Us</a></li> <li class="hs-menu-item hs-menu-depth-2" role="none"><a href="https://www.clear-trail.com/events.php" role="menuitem">Events</a></li> <li class="hs-menu-item hs-menu-depth-2" role="none"><a href="https://careers.clear-trail.com/" role="menuitem" target="_blank" rel="noopener">Careers</a></li> <li class="hs-menu-item hs-menu-depth-2" role="none"><a href="https://www.clear-trail.com/knowledge-center.php" role="menuitem">Knowledge Center</a></li> <li class="hs-menu-item hs-menu-depth-2" role="none"><a href="https://blog.clear-trail.com/" role="menuitem">Blog</a></li> </ul></li> </ul> </div></span></div> </div><!--end widget-span --> <div class="span3 widget-span widget-type-custom_widget social-icons" style="" data-widget-type="custom_widget" data-x="9" data-w="3"> <div id="hs_cos_wrapper_module_1578479221482720" class="hs_cos_wrapper hs_cos_wrapper_widget hs_cos_wrapper_type_module" style="" data-hs-cos-general-type="widget" data-hs-cos-type="module"><h3> <a href="https://www.clear-trail.com/partner.php">Partner With Us </a> </h3> <h3> <a href="https://www.clear-trail.com/contact-us.php">Contact Us </a> </h3> <ul class="ftr-social"> <li> <a href="mailto:info@clear-trail.com"> <svg version="1.1" id="Capa_1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px" y="0px" viewbox="0 0 512 512" xml:space="preserve"><g><g><path d="M467,61H45c-6.927,0-13.412,1.703-19.279,4.51L255,294.789l51.389-49.387c0,0,0.004-0.005,0.005-0.007 c0.001-0.002,0.005-0.004,0.005-0.004L486.286,65.514C480.418,62.705,473.929,61,467,61z"></path></g></g><g><g><path d="M507.496,86.728L338.213,256.002L507.49,425.279c2.807-5.867,4.51-12.352,4.51-19.279V106 C512,99.077,510.301,92.593,507.496,86.728z"></path></g></g><g><g><path d="M4.51,86.721C1.703,92.588,0,99.073,0,106v300c0,6.923,1.701,13.409,4.506,19.274L173.789,256L4.51,86.721z"></path></g></g><g><g><path d="M317.002,277.213l-51.396,49.393c-2.93,2.93-6.768,4.395-10.605,4.395s-7.676-1.465-10.605-4.395L195,277.211 L25.714,446.486C31.582,449.295,38.071,451,45,451h422c6.927,0,13.412-1.703,19.279-4.51L317.002,277.213z"></path></g></g></svg> </a> </li> <li> <a href="https://www.facebook.com/ClearTrailTechnologies/" target="_blank"> <svg id="Bold" enable-background="new 0 0 24 24" height="512" viewbox="0 0 24 24" width="512" xmlns="http://www.w3.org/2000/svg"><path d="m15.997 3.985h2.191v-3.816c-.378-.052-1.678-.169-3.192-.169-3.159 0-5.323 1.987-5.323 5.639v3.361h-3.486v4.266h3.486v10.734h4.274v-10.733h3.345l.531-4.266h-3.877v-2.939c.001-1.233.333-2.077 2.051-2.077z"></path></svg> </a> </li> <li> <a href="https://www.linkedin.com/company/cleartrail-technologies" target="_blank"> <svg id="Bold" enable-background="new 0 0 24 24" height="512" viewbox="0 0 24 24" width="512" xmlns="http://www.w3.org/2000/svg"><path d="m23.994 24v-.001h.006v-8.802c0-4.306-.927-7.623-5.961-7.623-2.42 0-4.044 1.328-4.707 2.587h-.07v-2.185h-4.773v16.023h4.97v-7.934c0-2.089.396-4.109 2.983-4.109 2.549 0 2.587 2.384 2.587 4.243v7.801z"></path><path d="m.396 7.977h4.976v16.023h-4.976z"></path><path d="m2.882 0c-1.591 0-2.882 1.291-2.882 2.882s1.291 2.909 2.882 2.909 2.882-1.318 2.882-2.909c-.001-1.591-1.292-2.882-2.882-2.882z"></path></svg> </a> </li> <li> <a href="https://twitter.com/cleartrailt" target="_blank"> <svg version="1.1" id="Layer_1" xmlns="http://www.w3.org/2000/svg" x="0px" y="0px" viewbox="0 0 488 459"><g transform="translate(0.000000,459.000000) scale(0.100000,-0.100000)"><g><path class="st0" d="M14,4579c-2-3,160-224,359-490s622-832,940-1257l578-773l-37-42c-21-23-446-482-944-1020C412,458,3,14,2,9 C0,4,87,0,212,1l213,1l70,77c39,42,401,433,805,870s746,807,760,823l25,29l200-268c110-147,413-553,673-901L3432,0h725 c603,0,724,2,720,13c-3,8-187,256-409,553c-222,296-476,636-564,754c-89,118-350,469-582,778c-232,310-422,568-422,572 c0,7,1226,1338,1643,1783l119,127h-219l-218-1l-255-276c-140-152-483-524-763-825l-507-548l-615,822l-616,823l-725,5 C345,4583,16,4582,14,4579z M1732,3693c237-318,603-807,813-1088c210-280,676-904,1036-1385c360-482,658-881,663-888 c6-9-65-12-324-12h-331l-656,878C1419,3221,655,4243,646,4258c-6,9,62,12,323,12h331L1732,3693z"></path></g></g></svg> </a> </li> </ul></div> </div><!--end widget-span --> </div><!--end row--> </div><!--end row-wrapper --> <div class="row-fluid-wrapper row-depth-1 row-number-4 "> <div class="row-fluid "> <div class="span12 widget-span widget-type-custom_widget cm-copyright" style="" data-widget-type="custom_widget" data-x="0" data-w="12"> <div id="hs_cos_wrapper_module_1578478084364273" class="hs_cos_wrapper hs_cos_wrapper_widget hs_cos_wrapper_type_module widget-type-rich_text" style="" data-hs-cos-general-type="widget" data-hs-cos-type="module"><span id="hs_cos_wrapper_module_1578478084364273_" class="hs_cos_wrapper hs_cos_wrapper_widget hs_cos_wrapper_type_rich_text" style="" data-hs-cos-general-type="widget" data-hs-cos-type="rich_text"><p>© <span>2020</span> ClearTrail Technologies Pvt. Ltd. All Rights Reserved. | <a href="https://www.clear-trail.com/privacy-policy.php">Privacy Policy</a></p></span></div> </div><!--end widget-span --> </div><!--end row--> </div><!--end row-wrapper --> </div><!--end widget-span --> </div><!--end row--> </div><!--end row-wrapper --> </div><!--end widget-span --> </div><!--end row--> </div><!--end row-wrapper --> </div> </div><!--end widget-span --> </div><!--end row--> </div><!--end row-wrapper --> </div><!--end footer --> </div><!--end footer wrapper --> <!-- HubSpot performance collection script --> <script defer src="/hs/hsstatic/content-cwv-embed/static-1.1293/embed.js"></script> <script src="https://blog.clear-trail.com/hs-fs/hub/6875752/hub_generated/template_assets/24160099834/1578985736623/ClearTrail_January2020_Theme/Coded_Files/ClearTrail_January2020-main.min.js"></script> <script> var hsVars = hsVars || {}; hsVars['language'] = 'en-in'; </script> <script src="/hs/hsstatic/cos-i18n/static-1.53/bundles/project.js"></script> <script src="/hs/hsstatic/keyboard-accessible-menu-flyouts/static-1.17/bundles/project.js"></script> <script src="/hs/hsstatic/AsyncSupport/static-1.122/js/post_listing_asset.js"></script> <script> function hsOnReadyPopulateListingFeed_269187562_1739040234550() { var options = { 'id': "269187562-1739040234550", 'listing_url': "/_hcms/postlisting?blogId=23515705638&maxLinks=5&listingType=recent&orderByViews=false&hs-expires=1770595200&hs-version=2&hs-signature=AJ2IBuGmNz3XfZv42E8jqmh6T6_SqS_ljA", 'include_featured_image': false }; window.hsPopulateListingFeed(options); } if (document.readyState === "complete" || (document.readyState !== "loading" && !document.documentElement.doScroll) ) { hsOnReadyPopulateListingFeed_269187562_1739040234550(); } else { document.addEventListener("DOMContentLoaded", hsOnReadyPopulateListingFeed_269187562_1739040234550); } </script> <!-- Start of HubSpot Analytics Code --> <script type="text/javascript"> var _hsq = _hsq || []; _hsq.push(["setContentType", "blog-post"]); _hsq.push(["setCanonicalUrl", "https:\/\/blog.clear-trail.com\/introducing-pcap-data-for-investigators"]); _hsq.push(["setPageId", "182754103655"]); _hsq.push(["setContentMetadata", { "contentPageId": 182754103655, "legacyPageId": "182754103655", "contentFolderId": null, "contentGroupId": 23515705638, "abTestId": null, "languageVariantId": 182754103655, "languageCode": "en-in", }]); </script> <script type="text/javascript" id="hs-script-loader" async defer src="/hs/scriptloader/6875752.js"></script> <!-- End of HubSpot Analytics Code --> <script type="text/javascript"> var hsVars = { render_id: "d85c6402-adce-4ce2-bd26-84642fd96258", ticks: 1739040234488, page_id: 182754103655, content_group_id: 23515705638, portal_id: 6875752, app_hs_base_url: "https://app.hubspot.com", cp_hs_base_url: "https://cp.hubspot.com", language: "en-in", analytics_page_type: "blog-post", scp_content_type: "", analytics_page_id: "182754103655", category_id: 3, folder_id: 0, is_hubspot_user: false } </script> <script defer src="/hs/hsstatic/HubspotToolsMenu/static-1.393/js/index.js"></script> <div id="fb-root"></div> <script>(function(d, s, id) { var js, fjs = d.getElementsByTagName(s)[0]; if (d.getElementById(id)) return; js = d.createElement(s); js.id = id; js.src = "//connect.facebook.net/en_GB/sdk.js#xfbml=1&version=v3.0"; fjs.parentNode.insertBefore(js, fjs); }(document, 'script', 'facebook-jssdk'));</script> <script>!function(d,s,id){var js,fjs=d.getElementsByTagName(s)[0];if(!d.getElementById(id)){js=d.createElement(s);js.id=id;js.src="https://platform.twitter.com/widgets.js";fjs.parentNode.insertBefore(js,fjs);}}(document,"script","twitter-wjs");</script> <!-- Generated by the HubSpot Template Builder - template version 1.03 --> </body></html>