{"id":13765839,"url":"https://github.com/emanuele-f/PCAPdroid","last_synced_at":"2025-05-10T21:32:05.455Z","repository":{"id":37805098,"uuid":"232157758","full_name":"emanuele-f/PCAPdroid","owner":"emanuele-f","description":"No-root network monitor, firewall and PCAP dumper for Android","archived":false,"fork":false,"pushed_at":"2024-11-03T19:22:02.000Z","size":15008,"stargazers_count":2353,"open_issues_count":57,"forks_count":279,"subscribers_count":45,"default_branch":"master","last_synced_at":"2024-11-03T19:30:29.615Z","etag":null,"topics":["android","capture-traffic","decryption","firewall","network-analysis","no-root","pcap","pcap-files","sniffer","sniffing","traffic-monitor","wireshark"],"latest_commit_sha":null,"homepage":"https://emanuele-f.github.io/PCAPdroid","language":"Java","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/emanuele-f.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":null,"funding":null,"license":"COPYING","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2020-01-06T18:11:27.000Z","updated_at":"2024-11-03T18:54:31.000Z","dependencies_parsed_at":"2023-11-13T19:58:29.233Z","dependency_job_id":"abfac803-0987-44f2-ba2e-b5a42f064a4c","html_url":"https://github.com/emanuele-f/PCAPdroid","commit_stats":null,"previous_names":[],"tags_count":60,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/emanuele-f%2FPCAPdroid","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/emanuele-f%2FPCAPdroid/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/emanuele-f%2FPCAPdroid/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/emanuele-f%2FPCAPdroid/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/emanuele-f","download_url":"https://codeload.github.com/emanuele-f/PCAPdroid/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":224989731,"owners_count":17403409,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["android","capture-traffic","decryption","firewall","network-analysis","no-root","pcap","pcap-files","sniffer","sniffing","traffic-monitor","wireshark"],"created_at":"2024-08-03T16:00:47.072Z","updated_at":"2024-11-17T01:31:35.621Z","avatar_url":"https://github.com/emanuele-f.png","language":"Java","funding_links":[],"categories":["Tools","Java","Weapons","🌐 Network and Connectivity"],"sub_categories":["Other","Android","Misc Network Tools"],"readme":"# PCAPdroid\n\nPCAPdroid is a privacy-friendly open source app which lets you track, analyze and block the connections made by the other apps in your device. It also allows you to export a PCAP dump of the traffic, inspect HTTP, decrypt TLS traffic and much more!\n\nPCAPdroid simulates a VPN in order to capture the network traffic without root. It does not use a remote VPN server, instead data is processed locally on the device.\n\n\u003cp align=\"center\"\u003e\n\u003cimg src=\"https://raw.githubusercontent.com/emanuele-f/PCAPdroid/master/fastlane/metadata/android/en-US/images/phoneScreenshots/1.jpg\" width=\"190\" /\u003e\n\u003cimg src=\"https://raw.githubusercontent.com/emanuele-f/PCAPdroid/master/fastlane/metadata/android/en-US/images/phoneScreenshots/2.jpg\" width=\"190\" /\u003e\n\u003c/p\u003e\n\nFeatures:\n\n- Log and examine the connections made by user and system apps\n- Extract the SNI, DNS query, HTTP URL and the remote IP address\n- Inspect HTTP requests and replies thanks to the built-in decoders\n- Inspect the full connections payload as hexdump/text\n- [Decrypt the HTTPS/TLS traffic](https://emanuele-f.github.io/PCAPdroid/tls_decryption) and export the SSLKEYLOGFILE\n- Dump the traffic to a PCAP file, download it from a browser, or stream it to a remote receiver for real-time analysis (e.g. Wireshark)\n- Create rules to filter out the good traffic and easily spot anomalies\n- Identify the country and ASN of remote server via offline DB lookups\n- On rooted devices, capture the traffic while other VPN apps are running\n\nPaid features:\n\n- [Firewall](https://emanuele-f.github.io/PCAPdroid/paid_features#51-firewall): create rules to block individual apps, domains and IP addresses\n- [Malware detection](https://emanuele-f.github.io/PCAPdroid/paid_features#52-malware-detection): detect malicious connections by using third-party blacklists\n- [PCAPng format](https://emanuele-f.github.io/PCAPdroid/paid_features#53-pcapng-format): makes it easier to export and analyze decrypted traffic\n\nIf you plan to use PCAPdroid to perform packet analysis, please check out \u003ca href='https://emanuele-f.github.io/PCAPdroid/quick_start#14-packet-analysis'\u003ethe specific section\u003c/a\u003e of the manual.\n\n\u003ca href=\"https://f-droid.org/packages/com.emanuelef.remote_capture\"\u003e\n    \u003cimg src=\"https://fdroid.gitlab.io/artwork/badge/get-it-on.png\"\n    alt=\"Get it on F-Droid\"\n    height=\"80\"\u003e\n\u003c/a\u003e \u003ca href='https://play.google.com/store/apps/details?id=com.emanuelef.remote_capture'\u003e\u003cimg height=\"80\" alt='Get it on Google Play' src='https://play.google.com/intl/en_us/badges/static/images/badges/en_badge_web_generic.png'/\u003e\u003c/a\u003e\n\nYou can test the latest features before the official release by adding the [Beta repository](https://pcapdroid.org/fdroid/repo/) to the F-Droid app.\n\n## User Guide\n\nCheck out the [quick start instructions](https://emanuele-f.github.io/PCAPdroid/quick_start) or the full [User Guide](https://emanuele-f.github.io/PCAPdroid).\n\n## Sponsors\n\nThe PCAPdroid project is sponsored by [AVEQ GmbH](https://aveq.info).\n\nIf you want to sponsor this project [drop me an email](mailto:black.silver@hotmail.it?subject=PCAPdroid%20sponsorship).\n\n## Community\n\nYou can help the PCAPdroid project in many ways:\n\n- [Make a donation](https://emanuele-f.github.io/PCAPdroid/donate)\n- Translate the app on [Weblate](https://hosted.weblate.org/engage/pcapdroid/)\n\u003ca href=\"https://hosted.weblate.org/engage/pcapdroid/\"\u003e\n  \u003cimg src=\"https://hosted.weblate.org/widgets/pcapdroid/-/app/multi-auto.svg\" alt=\"Translation status\" /\u003e\n\u003c/a\u003e\n\n- [Discuss](https://github.com/emanuele-f/PCAPdroid/discussions) new features\n- Improve the app theme and layout\n- Star the project on Github and on [Google Play](https://play.google.com/store/apps/details?id=com.emanuelef.remote_capture)\n- Of course provide code pull requests!\n\nJoin the international PCAPdroid community [on Telegram](https://t.me/PCAPdroid) or [on Matrix](https://matrix.to/#/#pcapdroid:matrix.org).\n\n## Integrating into your APP\n\nSome features of PCAPdroid can be integrated into a third-party app to provide packet capture capabilities.\n\n- For rooted devices, the [pcapd daemon](https://github.com/emanuele-f/PCAPdroid/tree/master/app/src/main/jni/pcapd) can be directly integrated into your APK to capture network packets.\n- For all the devices, PCAPdroid [exposes an API](https://github.com/emanuele-f/PCAPdroid/blob/master/docs/app_api.md) to control the packet capture and send the captured packets via UDP to your app. This requires to install PCAPdroid along with your app.\n\n## Open Source\n\nPCAPdroid is powered by open source technologies.\n\n- [nDPI](https://github.com/ntop/nDPI): deep packet inspection library, provides the connections metadata\n- [mitmproxy](https://github.com/mitmproxy/mitmproxy): a local proxy for the TLS decryption\n- [zdtun](https://github.com/emanuele-f/zdtun): minimal TCP/IP stack for the non-root capture\n\nFor the complete list of third party libraries check out the \"About\" page in the app.\n\n## Building\n\n1. On Windows, install [gitforwindows](https://gitforwindows.org)\n2. Clone this repo\n3. Inside the repo dir, run `git submodule update --init`. The `submodules` directory should get populated.\n4. Open the project in Android Studio, install the appropriate SDK and the NDK\n5. Build the app\n\n*Note*: If you get \"No valid CMake executable was found\", be sure to install the CMake version used by PCAPdroid (currently [3.22.1](https://github.com/emanuele-f/PCAPdroid/blob/master/app/build.gradle)) from the SDK manager\n\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Femanuele-f%2FPCAPdroid","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Femanuele-f%2FPCAPdroid","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Femanuele-f%2FPCAPdroid/lists"}