Projects in Awesome Lists tagged with network-forensics
A curated list of projects in awesome lists tagged with network-forensics .
https://github.com/seladb/pcapplusplus
PcapPlusPlus is a multiplatform C++ library for capturing, parsing and crafting of network packets. It is designed to be efficient, powerful and easy to use. It provides C++ wrappers for the most popular packet processing engines such as libpcap, Npcap, WinPcap, DPDK, AF_XDP and PF_RING.
cpp dpdk ebpf libpcap linux mac-osx multiplatform network-forensics network-tools networking packet-crafting packet-parsing packet-processing pcap pcap-files pcapplusplus pf-ring tcp-reassembly windows winpcap
Last synced: 13 May 2025
https://github.com/seladb/PcapPlusPlus
PcapPlusPlus is a multiplatform C++ library for capturing, parsing and crafting of network packets. It is designed to be efficient, powerful and easy to use. It provides C++ wrappers for the most popular packet processing engines such as libpcap, Npcap, WinPcap, DPDK, AF_XDP and PF_RING.
cpp dpdk ebpf libpcap linux mac-osx multiplatform network-forensics network-tools networking packet-crafting packet-parsing packet-processing pcap pcap-files pcapplusplus pf-ring tcp-reassembly windows winpcap
Last synced: 15 Mar 2025
https://github.com/FoxIO-LLC/ja4
JA4+ is a suite of network fingerprinting standards
cybersecurity ja3 ja3-fingerprint ja4 ja4-fingerprint ja4h ja4x jarm network-analysis network-forensics
Last synced: 21 Mar 2025
https://github.com/misp/misp-warninglists
Warning lists to inform users of MISP about potential false-positives or other information in indicators
dfir false-positive misp misp-warninglists network-forensics threat-intelligence
Last synced: 15 May 2025
https://github.com/MISP/misp-warninglists
Warning lists to inform users of MISP about potential false-positives or other information in indicators
dfir false-positive misp misp-warninglists network-forensics threat-intelligence
Last synced: 15 Apr 2025
https://github.com/faucetsdn/poseidon
Poseidon is a python-based application that leverages software defined networks (SDN) to acquire and then feed network traffic to a number of machine learning techniques. The machine learning algorithms classify and predict the type of device.
automation docker faucet hacktoberfest machine-learning network-analysis network-forensics network-monitoring network-traffic network-traffic-capture network-traffic-classification networking pcap pcap-analyzer pcap-files sdn sdn-controller security software-defined-network
Last synced: 13 Dec 2025
https://github.com/medbenali/CyberScan
CyberScan: Network's Forensics ToolKit
geolocation information-gathering network-analysis network-forensics network-security network-visualization opensource pcap-analyzer portscanner service-discovery
Last synced: 26 Mar 2025
https://github.com/fkie-cad/fritap
Simplifying SSL/TLS traffic analysis for researchers by making SSL decryption effortless.
android android-https-capture binary-analysis frida hooking https linux network-analysis network-capture network-forensics security security-audit ssl ssldump tcpdump tls
Last synced: 09 Oct 2025
https://github.com/fkie-cad/friTap
Simplifying SSL/TLS traffic analysis for researchers by making SSL decryption effortless.
android android-https-capture binary-analysis frida hooking https linux network-analysis network-capture network-forensics security security-audit ssl ssldump tcpdump tls
Last synced: 27 Mar 2025
https://github.com/stamparm/blackbook
Blackbook of malware domains
domains intrusion-detection malware-detection network-forensics network-monitoring security threats
Last synced: 02 Feb 2026
https://github.com/asiamina/A-Course-on-Digital-Forensics
A course on "Digital Forensics" designed and offered in the Computer Science Department at Texas Tech University
courses digital-forensics disk-forensics memory-forensics mobile-forensics network-forensics reverse-engineering
Last synced: 13 Mar 2025
https://github.com/fkie-cad/pcapfs
A FUSE module to mount captured network data
forensics fuse network-forensics pcap pcap-files pcapng
Last synced: 25 Oct 2025
https://github.com/cdpxe/nefias
Network Forensic & Anomaly Detection System; tailored for covert channel/network steganography detection
anomaly-detection bash covert-channels distributed-computing information-hiding information-security infosec linux network network-covert-channels network-forensics network-monitoring network-steganography networks scientific-computations scientific-research security shell shell-scripts steganography
Last synced: 16 Mar 2025
https://github.com/cdpxe/networkcovertchannels
Some network covert channel projects of my own research, containing a protocol channel tool (protocol switching covert channel, PCT/PSCC), a protocol hopping covert channel (PHCC) tool, the protocol channel-aware active warden (PCAW) and ... VSTT.
active covert-channel information-hiding information-security infosec network-analysis network-forensics network-science network-security network-steganography network-traffic-generator protocol-channels protocol-hopping protocol-hopping-covert-channels protocol-switching-covert-channels scientific-software secret-sharing steganography stego warden
Last synced: 06 Oct 2025
https://github.com/fkie-cad/tlexport
The goal of this project is to help researchers/investigaters to export the decrypted TLS content into a PCAP
network-analysis network-forensics pcap pcapng
Last synced: 06 May 2025
https://github.com/notyusheng/tracepcap
Self-hosted LLM network packet analysis tool. Visualize network traffic patterns, analyze packet flows, generate intelligent filters, and gain insights through AI-powered analysis. Perfect for network troubleshooting, security analysis, protocol debugging, or educational purposes.
ai blue-team cyber-defense cybersecurity data-visualization llm ndpi network-forensics network-monitoring network-visualization packet-analysis pcap pcap-analyzer pcap4j protocol-analysis self-hosted sgds soc tshark wireshark
Last synced: 05 Apr 2026
https://github.com/mikehorn-git/psqlhunter
Hunt sql commands in pcap.
forensics network-forensics pcap pyshark python sql sqlinjection threat-hunting
Last synced: 07 May 2025
https://github.com/mikehorn-git/hydra
Hunt sql commands in pcap
forensics network-forensics pcap pyshark sqlinjection
Last synced: 11 Oct 2025
https://github.com/githubfoam/moloch-sandbox
network security monitoring visibility , ELK, CTI, DFIR
elasticsearch elk kibana logstash moloch network-forensics network-monitoring pcap
Last synced: 27 Apr 2026
https://github.com/eliainnocenti/cover-your-tracks
Project for Computer Forensics and Cyber Crime Analysis Exam @ Polito - An interactive forensic serious game for identifying anti-forensic techniques across filesystem, memory, and network domains.
anti-forensics cybersecurity cybersecurity-awareness cybersecurity-education digital-forensics dkom dns-tunneling file-carving icmp-exfiltration lsb-detection network-forensics ntfs-attributes process-hiding ram-analysis rootkit-detection serious-game slack-space steganography timestomping
Last synced: 12 Jun 2026
https://github.com/dantex86/iremove-malware-analysis
Comprehensive analysis of iRemove malware targeting macOS systems - Security research and threat intelligence
cybersecurity iocs macos malware-analysis network-forensics security-research threat-intelligence yara-rules
Last synced: 31 Jul 2025
https://github.com/lucadibello/wiremap-public
🛰️ A sophisticated network mapper and analyser
network-analysis network-forensics network-security
Last synced: 04 Feb 2026
https://github.com/githubfoam/tshark-githubactions
tshark network forensics ubuntu
network-forensics tshark ubuntu
Last synced: 08 Jan 2026
https://github.com/githubfoam/tshark-sandbox
tshark network forensics ubuntu windows
network-forensics tshark ubuntu windows
Last synced: 14 May 2026