Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

Projects in Awesome Lists tagged with pcap

A curated list of projects in awesome lists tagged with pcap .

https://github.com/wader/fq

jq for binary formats - tool, language and decoders for working with binary and text formats

binary cli decode go golang hexdump jq json pcap query repl tls xml

Last synced: 14 May 2025

https://github.com/gcla/termshark

A terminal UI for tshark, inspired by Wireshark

go golang gowid pcap tcell tshark tui wireshark

Last synced: 14 May 2025

https://github.com/bee-san/pywhat

🐸 Identify anything. pyWhat easily lets you identify emails, IP addresses, and more. Feed it a .pcap file or some text and it'll tell you what it is! 🧙‍♀️

cyber cybersecurity hacking hacktoberfest malware malware-analysis malware-research pcap python re security tryhackme

Last synced: 13 May 2025

https://github.com/zeek/zeek

Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.

bro dfir network-monitoring nsm pcap security zeek

Last synced: 12 May 2025

https://github.com/bee-san/pyWhat

🐸 Identify anything. pyWhat easily lets you identify emails, IP addresses, and more. Feed it a .pcap file or some text and it'll tell you what it is! 🧙‍♀️

cyber cybersecurity hacking hacktoberfest malware malware-analysis malware-research pcap python re security tryhackme

Last synced: 17 Mar 2025

https://github.com/arkime/arkime

Arkime is an open source, large scale, full packet capturing, indexing, and database system.

big-data c javascript network-monitoring nsm packet-capture pcap security

Last synced: 12 May 2025

https://github.com/seladb/pcapplusplus

PcapPlusPlus is a multiplatform C++ library for capturing, parsing and crafting of network packets. It is designed to be efficient, powerful and easy to use. It provides C++ wrappers for the most popular packet processing engines such as libpcap, Npcap, WinPcap, DPDK, AF_XDP and PF_RING.

cpp dpdk ebpf libpcap linux mac-osx multiplatform network-forensics network-tools networking packet-crafting packet-parsing packet-processing pcap pcap-files pcapplusplus pf-ring tcp-reassembly windows winpcap

Last synced: 13 May 2025

https://github.com/the-tcpdump-group/libpcap

the LIBpcap interface to various kernel packet capture mechanism

berkeley-packet-filter bpf bsd-packet-filter libpcap packet-capture pcap pcapng sniffer

Last synced: 13 May 2025

https://github.com/seladb/PcapPlusPlus

PcapPlusPlus is a multiplatform C++ library for capturing, parsing and crafting of network packets. It is designed to be efficient, powerful and easy to use. It provides C++ wrappers for the most popular packet processing engines such as libpcap, Npcap, WinPcap, DPDK, AF_XDP and PF_RING.

cpp dpdk ebpf libpcap linux mac-osx multiplatform network-forensics network-tools networking packet-crafting packet-parsing packet-processing pcap pcap-files pcapplusplus pf-ring tcp-reassembly windows winpcap

Last synced: 15 Mar 2025

https://github.com/cisagov/malcolm

Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.

arkime cybersecurity infosec network-security network-traffic-analysis networksecurity networktrafficanalysis opensearch opensearch-dashboards pcap security suricata zeek

Last synced: 06 Oct 2025

https://github.com/zerbea/hcxtools

A small set of tools to convert packets from capture files to hash files for use with Hashcat or John the Ripper.

handshake hashcat hccapx john-the-ripper pcap pcapng penetration-testing-framework raspberry-pi wifi wifi-security wlan wlan-traffic wpa wpa2

Last synced: 13 May 2025

https://github.com/cisagov/Malcolm

Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.

arkime cybersecurity infosec network-security network-traffic-analysis networksecurity networktrafficanalysis opensearch opensearch-dashboards pcap security suricata zeek

Last synced: 30 Mar 2025

https://github.com/ZerBea/hcxtools

A small set of tools to convert packets from capture files to hash files for use with Hashcat or John the Ripper.

handshake hashcat hccapx john-the-ripper pcap pcapng penetration-testing-framework raspberry-pi wifi wifi-security wlan wlan-traffic wpa wpa2

Last synced: 01 Apr 2025

https://github.com/mfontanini/libtins

High-level, multiplatform C++ network packet sniffing and crafting library.

libpcap network packet-analyser packet-parsing packets pcap sniffing

Last synced: 11 Apr 2025

https://github.com/Srinivas11789/PcapXray

:snowflake: PcapXray - A Network Forensics Tool - To visualize a Packet Capture offline as a Network Diagram including device identification, highlight important communication and file extraction

computer-forensics cybersecurity forensic-analysis forensics network network-diagram packets pcap python security tor tor-traffic traffic

Last synced: 07 Apr 2025

https://github.com/srinivas11789/pcapxray

:snowflake: PcapXray - A Network Forensics Tool - To visualize a Packet Capture offline as a Network Diagram including device identification, highlight important communication and file extraction

computer-forensics cybersecurity forensic-analysis forensics network network-diagram packets pcap python security tor tor-traffic traffic

Last synced: 13 Mar 2025

https://github.com/danderson/netboot

Packages and utilities for network booting

dhcp netboot pcap pixiecore pxe tftp

Last synced: 15 May 2025

https://github.com/P1sec/QCSuper

QCSuper is a tool communicating with Qualcomm-based phones and modems, allowing to capture raw 2G/3G/4G radio frames, among other things.

baseband gsm lte pcap qualcomm telecom umts

Last synced: 12 May 2025

https://github.com/appneta/tcpreplay

Pcap editing and replay tools for *NIX and Windows - Users please download source from

c flow netflow netmap packet-generator pcap performance performance-testing replays-pcap-files tcpreplay traffic

Last synced: 15 May 2025

https://github.com/kpcyrd/sniffglue

Secure multithreaded packet sniffer

network pcap rust sandboxed sniffer

Last synced: 13 May 2025

https://github.com/tomchop/malcom

Malcom - Malware Communications Analyzer

dfir infosec malware malware-analysis network-traffic pcap threat-intelligence

Last synced: 16 May 2025

https://github.com/irontec/sngrep

Ncurses SIP Messages flow viewer

debug flow hep ncurses pcap sip terminal trace

Last synced: 14 May 2025

https://github.com/HatBoy/Pcap-Analyzer

Python编写的可视化的离线数据包分析器

pcap pcap-analyzer python

Last synced: 13 Mar 2025

https://github.com/hatboy/pcap-analyzer

Python编写的可视化的离线数据包分析器

pcap pcap-analyzer python

Last synced: 09 Jul 2025

https://github.com/p1sec/qcsuper

QCSuper is a tool communicating with Qualcomm-based phones and modems, allowing to capture raw 2G/3G/4G radio frames, among other things.

baseband gsm lte pcap qualcomm telecom umts

Last synced: 30 Dec 2025

https://github.com/node-pcap/node_pcap

libpcap bindings for node

packet-capture pcap sniffer

Last synced: 30 Dec 2025

https://github.com/phaethon/kamene

Network packet and pcap file crafting/sniffing/manipulation/visualization security tool. Originally forked from scapy in 2015 and providing python3 compatibility since then.

network-scanner packet-crafting pcap python3 scapy security sniff

Last synced: 15 May 2025

https://github.com/chenjiandongx/sniffer

🤒 A modern alternative network traffic sniffer.

cli gopacket networking packets pcap sniffer tcpdump traffic

Last synced: 12 Apr 2025

https://github.com/stratosphereips/StratosphereLinuxIPS

Slips, a free software behavioral Python intrusion prevention system (IDS/IPS) that uses machine learning to detect malicious behaviors in the network traffic. Stratosphere Laboratory, AIC, FEL, CVUT in Prague.

ai docker endpoint-protection gsoc-2023 gsoc-2024 ids intrusion-detection-system intrusion-prevention-system ips machine-learning network-analysis network-security pcap stratosphere-ips zeek

Last synced: 30 Mar 2025

https://github.com/netboxlabs/pktvisor

pktvisor is a dynamic network observability agent that smartly analyzes network traffic and generates opentelemetry metrics

agent api-first collector-agent dnstap grafana monitoring observability packet-capture pcap prometheus stream-processors

Last synced: 15 May 2025

https://github.com/sachaos/tcpterm

tcpterm is a packet visualizer in TUI.

go golang pcap tcp tcpdump terminal tui

Last synced: 22 Jun 2025

https://github.com/spacehuhn/arduinopcap

A library for creating and sending .pcap files for Wireshark and other programms.

adruino esp32 esp8266 library pcap wireshark

Last synced: 05 Apr 2025

https://github.com/faucetsdn/poseidon

Poseidon is a python-based application that leverages software defined networks (SDN) to acquire and then feed network traffic to a number of machine learning techniques. The machine learning algorithms classify and predict the type of device.

automation docker faucet hacktoberfest machine-learning network-analysis network-forensics network-monitoring network-traffic network-traffic-capture network-traffic-classification networking pcap pcap-analyzer pcap-files sdn sdn-controller security software-defined-network

Last synced: 13 Dec 2025

https://github.com/dns-oarc/packetq

A tool that provides a basic SQL-frontend to PCAP-files

dns pcap sql

Last synced: 15 Dec 2025

https://github.com/idaholab/malcolm

Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.

arkime cybersecurity infosec network-security network-traffic-analysis networksecurity networktrafficanalysis opensearch opensearch-dashboards pcap security suricata zeek

Last synced: 13 Mar 2025

https://github.com/idaholab/Malcolm

Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.

arkime cybersecurity infosec network-security network-traffic-analysis networksecurity networktrafficanalysis opensearch opensearch-dashboards pcap security suricata zeek

Last synced: 30 Mar 2025

https://github.com/rfyiamcool/go-netflow

go netflow, capture process in/out traffic, similar to c Nethogs.

nethogs pcap

Last synced: 06 Apr 2025

https://github.com/1ultimat3/PcapViz

Visualize network topologies and collect graph statistics based on pcap files

network-topology pcap python security-tools

Last synced: 03 Apr 2025

https://github.com/pynetwork/pypcap

pypcap - python libpcap module, forked from code.google.com/p/pypcap

networking packet-capture pcap

Last synced: 17 Dec 2025

https://github.com/dns-oarc/dnscap

Network capture utility designed specifically for DNS traffic

c dns packet-capture pcap

Last synced: 16 May 2025

https://github.com/DNS-OARC/dnscap

Network capture utility designed specifically for DNS traffic

c dns packet-capture pcap

Last synced: 20 Mar 2025

https://github.com/dmachard/DNS-collector

Grab your DNS logs, detect anomalies, and finally understand what's happening on your network. The missing piece between DNS servers and your data stack.

collector coredns dns dns-server dnstap fluentd golang grafana logs loki openmetrics pcap powerdns prometheus security-tools sniffer statistics

Last synced: 22 Aug 2025

https://github.com/rigtorp/udpreplay

Replay UDP packets from a pcap file

packet-generator packet-replay pcap tcpreplay udp

Last synced: 06 Apr 2025

https://github.com/supabase/pg_netstat

PostgreSQL extension to monitor database network traffic

extensions pcap postgresql rust

Last synced: 13 Apr 2025

https://github.com/dmachard/dns-collector

Ingesting, pipelining, and enhancing your DNS logs with usage indicators, security analysis, and additional metadata.

collector coredns dns dns-server dnstap fluentd golang grafana logs loki openmetrics pcap powerdns prometheus security-tools sniffer statistics

Last synced: 15 Dec 2025

https://github.com/cuishark/cuishark

A protocol analyzer like a wireshark on CUI. cuishark is using libwireshark to analyze packets. https://cuishark.slankdev.net

cui ncurses packet-analyser packet-capture pcap protocol-analyzer tui wireshark

Last synced: 09 Jul 2025

https://github.com/activecm/passer

Passive service locator, a python sniffer that identifies servers, clients, names and much more

capturing-packets dns docker-command gplv3 hacktoberfest linux macosx network-monitoring packet-analyzer packet-sniffer packets passer pcap pcap-analyzer python python-2 scapy security sniffer

Last synced: 09 Apr 2025

https://github.com/emmanueltouzery/hotwire

Hotwire allows you to study network traffic of a few popular protocols in a simple way

packet-capture pcap tcpdump tshark wireshark

Last synced: 20 Aug 2025

https://github.com/haga-rak/fluxzy.core

Fast and fully streamed Man-On-The-Middle library and a CLI app to intercept, record, impersonate and alter HTTP/1.1, H2, websocket traffic over plain or secure channels.

csharp dotnet http http-archive http2 https impersonate mitm mitmproxy pcap proxy

Last synced: 02 Jan 2026

https://github.com/TotallyNotAHaxxer/Red-Rabbit

The Red Rabbit project is just what a hacker needs for everyday automation. Red Rabbit unlike most frameworks out there does not automate other peoples tools like the aircrack suite or the wifite framework, it rather has its own code and is raw source with over 270+ options. This framework might just be your everyday key to your workflow

cpp digital-forensics golang hacking-tool linux osint-tool pcap pcap-analyzer penetration-testing perl prox raw ssh tor web webapp xml

Last synced: 03 Apr 2025

https://github.com/msantos/epcap

Erlang packet capture interface using pcap

bpf pcap

Last synced: 05 Apr 2025

https://github.com/fox-it/dissect.cobaltstrike

Python library for dissecting and parsing Cobalt Strike related data such as Beacon payloads and Malleable C2 Profiles

beacon cobaltstrike dissect malleable-c2-profile parser pcap pypy3 python python3

Last synced: 08 Oct 2025

https://github.com/ddddddo/packemon

Packet monster (っ‘-’)╮=͟͟͞͞◒ ヽ( '-'ヽ) TUI tool for sending packets of arbitrary input and monitoring packets on any network interfaces (default: eth0).

ebpf linux network network-programming networking observability packet packet-analyzer packet-generator packet-monitoring pcap penetration-testing pentesting protocol routing-protocols security socket-programming sockets system-programming

Last synced: 05 Apr 2025

https://github.com/ddddddO/packemon

Packet monster (っ‘-’)╮=͟͟͞͞◒ ヽ( '-'ヽ) TUI tool for sending packets of arbitrary input and monitoring packets on any network interfaces (default: eth0).

ebpf linux network network-programming networking observability packet packet-analyzer packet-generator packet-monitoring pcap penetration-testing pentesting protocol routing-protocols security socket-programming sockets system-programming

Last synced: 28 Mar 2025

https://github.com/zeek/packages

The default package source of the Zeek Package Manager. Wrote a package? See the README for how to get it included.

bro network-monitoring nsm package-management packages pcap plugins security

Last synced: 13 Jun 2025

https://github.com/r-richter/hyenae-ng

Hyenae NG is an advanced cross-platform network packet generator and the successor of Hyenae. It features full network layer spoofing, pattern based address randomization and flood detection breaking mechanisms.

arp-cache-poisoning c-plus-plus console-application cross-platform denial-of-service flooding hyenae linux mitm networking npcap packet-generator pcap pentesting security smurf-attack spoofing stress-testing syn-flood windows

Last synced: 11 Jul 2025

https://github.com/chentingz/snifferui

基于MFC和WinPcap库开发的网络抓包和协议分析软件

packet-analyser packet-analyzer packet-capture pcap protocol-analyser sniffer winpcap

Last synced: 09 Jul 2025

https://github.com/hgn/captcp

A open source program for TCP analysis of PCAP files

ip ipv4 ipv6 pcap pcap-analyzer python tcp udp

Last synced: 23 Apr 2025

https://github.com/f18m/large-pcap-analyzer

A command-line utility program that performs some simple operations on PCAP files (Wireshark/tcpdump traces) very quickly. Allows you to manipulate very large PCAP files that cannot be easily handled with other software like Wireshark (or tshark). Supports filtering encapsulated GTPu frames. Easily extendible.

analyzer gtpu networking pcap tcpdump

Last synced: 11 May 2025

https://github.com/hdiniz/rtpdump

Extract audio file from RTP streams in pcap format

amr ims pcap rtp volte vowifi

Last synced: 11 May 2025

https://github.com/rusticata/pcap-parser

PCAP/PCAPNG file format parser written in pure Rust. Fast, zero-copy, safe.

pcap pcap-format pcap-parser pcapng streaming-parsers

Last synced: 11 Nov 2025

https://github.com/fox-it/openssh-session-key-recovery

Project containing several tools/ scripts to recover the OpenSSH session keys used to encrypt/ decrypt SSH traffic.

memory openssh pcap sshd volatility volatility3

Last synced: 03 Sep 2025

https://github.com/CIRCL/potiron

Potiron - Normalize, Index and Visualize Network Capture

graph information-security information-visualization network-analysis network-capture pcap tshark

Last synced: 07 Apr 2025

https://github.com/circl/potiron

Potiron - Normalize, Index and Visualize Network Capture

graph information-security information-visualization network-analysis network-capture pcap tshark

Last synced: 14 Apr 2025

https://github.com/h21lab/anomaly-detection

Scripts to help to detect anomalies in pcap file. Anomaly Detection using tensorflow and tshark.

detect-anomalies json machine-learning monitoring neural-network pcap tensorflow tshark wireshark

Last synced: 11 May 2025

https://github.com/massoudasadi/packiffer

lightweight cross-platform networking toolkit

bpf ebpf firewall gopacket inject libpcap packet pcap xdp

Last synced: 26 Apr 2025

https://github.com/brimdata/brimcap

Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)

brim-desktop pcap suricata zeek

Last synced: 19 Jul 2025

https://github.com/H21lab/Anomaly-Detection

Scripts to help to detect anomalies in pcap file. Anomaly Detection using tensorflow and tshark.

detect-anomalies json machine-learning monitoring neural-network pcap tensorflow tshark wireshark

Last synced: 06 Apr 2025

https://github.com/fox-it/OpenSSH-Session-Key-Recovery

Project containing several tools/ scripts to recover the OpenSSH session keys used to encrypt/ decrypt SSH traffic.

memory openssh pcap sshd volatility volatility3

Last synced: 30 Mar 2025

https://github.com/sip3io/sip3-captain-ce

SIP3 Captain (Community Edition)

dpdk monitoring pcap rtcp rtp sip troubleshooting voip

Last synced: 09 Apr 2025