{"id":18611651,"url":"https://github.com/nagy/denoise-pcap","last_synced_at":"2026-01-24T13:15:28.607Z","repository":{"id":205192824,"uuid":"708185972","full_name":"nagy/denoise-pcap","owner":"nagy","description":"Filtering Internet background noise from network captures","archived":false,"fork":false,"pushed_at":"2023-10-21T19:46:30.000Z","size":24,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":2,"default_branch":"master","last_synced_at":"2025-05-16T23:33:50.776Z","etag":null,"topics":["network","pcap"],"latest_commit_sha":null,"homepage":"","language":"Hy","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"agpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/nagy.png","metadata":{"files":{"readme":"README.org","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null}},"created_at":"2023-10-21T19:27:03.000Z","updated_at":"2023-11-02T23:07:36.000Z","dependencies_parsed_at":null,"dependency_job_id":"1225df6a-6689-4863-a255-be1736638af8","html_url":"https://github.com/nagy/denoise-pcap","commit_stats":null,"previous_names":["nagy/denoise-pcap"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/nagy/denoise-pcap","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/nagy%2Fdenoise-pcap","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/nagy%2Fdenoise-pcap/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/nagy%2Fdenoise-pcap/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/nagy%2Fdenoise-pcap/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/nagy","download_url":"https://codeload.github.com/nagy/denoise-pcap/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/nagy%2Fdenoise-pcap/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":28728580,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-01-24T10:24:43.181Z","status":"ssl_error","status_checked_at":"2026-01-24T10:24:36.112Z","response_time":89,"last_error":"SSL_read: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["network","pcap"],"created_at":"2024-11-07T03:14:29.774Z","updated_at":"2026-01-24T13:15:28.586Z","avatar_url":"https://github.com/nagy.png","language":"Hy","funding_links":[],"categories":[],"sub_categories":[],"readme":"#+title: Denoise PCAP\n#+author: Daniel Nagy\n#+startup: noinlineimages content\n#+options: html-postamble:nil toc:nil\n\nInternet Background Noise is a term that identifies packets between\ninterconnected networks, which are not both parties intent to this\ncommunication. This can include port scans and misconfigured devices. Persisting\nand analyzing this noise in a file of captured packets, can burden the workflow\nof forensic analysts because clearer communication flow are obstructed.\n\n* Installation\nIn the directory of the prebuilt artifacts, there is a =denoise_pcap= executable\nfile. You can install that somewhere into your =PATH=, for example in\n=/usr/bin/=.\n* Usage\n#+begin_src sh\ndenoise_pcap \u003cinputfile\u003e \u003coutputfile\u003e [filter]\n#+end_src\nThe default =filter= is =is_noise=, which should provide a sensible default set.\nTo get a list of other filters, run:\n#+begin_src sh\ndenoise_pcap --list\n#+end_src\n* Custom Filter\nTo write your own filters, you have to write them in a separate file and put that on your =PYTHONPATH=:\n#+begin_src sh\ncat \u003e /tmp/mymodule.hy \u003c\u003cEOF\n(eval-and-compile\n  (require hyrule * :readers *)\n  (import denoise_pcap.main *)\n  (require denoise_pcap.main * :readers *))\n\n(deffilter my-filter []\n  \"Filter anything with port 80.\"\n  (if (or (= pkt.sport 80)\n          (= pkt.dport 80)\n          pkt.tcp?)\n      [pkt]\n      []))\nEOF\nPYTHONPATH=/tmp denoise_pcap input.pcap output.pcap mymodule:my_filter\n#+end_src\n\n* License\n\n[[./LICENSE][AGPL3+]]\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fnagy%2Fdenoise-pcap","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fnagy%2Fdenoise-pcap","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fnagy%2Fdenoise-pcap/lists"}