This is more of a user question/request for help. There appears to be support in the TM query language for sending packet capture to remote bro or standalone bro client. I could not find support for this when searching the python bindings for broccoli api. Can someone provide example code for the query and for receiving the packet?
>>> query = 'query feed index ip "0.0.0.0"'
>>> rec = bc.send("Time::command", query)
Above: trying to understand what Broccoli feed is and how to identify its ID
Below: Support for sending packet over broccoli connection
P.S. I am not really a developer so would like help in layman's terms