Search Results for "pcap"
Sort By:
Showing 135 open source projects for "pcap"
View related business solutions-
Gemini 3 and 200+ AI Models on One PlatformBuild generative AI apps with Vertex AI. Switch between models without switching platforms.
-
Try Google Cloud Risk-Free With $300 in CreditUse your credit across every product. Compute, storage, AI, analytics. When it runs out, 20+ products stay free. You only pay when you choose to.
-
1
-
2
Kubeshark
The API traffic viewer for Kubernetes providing deep visibility
...Monitors all API traffic and payloads to find API drift and API anomalies and trace them down to source. Instant service dependency mapping through real-time API traffic analysis. Store all or a subset of traffic in PCAP files. View TCP stream request-response pairs and replay requests' payloads to a destination service. -
3
InterceptSuite
A TLS MITM proxy for Non-HTTP traffic, with support for TLS upgrades
InterceptSuite is a cross‑platform, SOCKS5‑based MITM proxy specially designed to intercept, inspect, analyze, and manipulate encrypted network traffic at the TCP/TLS layer. It goes beyond HTTP‑focused tools like Burp Suite and ZAP by providing universal TLS interception—including STARTTLS and non‑HTTP protocols—offering deep visibility and control for security testing and debugging. InterceptSuite bridges this gap by providing a universal TLS interception engine that works with any... -
4
Scapy
Scapy is a Python-based interactive packet manipulation program
Scapy is a powerful Python-based interactive packet manipulation program and library. It is able to forge or decode packets of a wide number of protocols, send them on the wire, capture them, store or read them using pcap files, match requests and replies, and much more. It is designed to allow fast packet prototyping by using default values that work. It can easily handle most classical tasks like scanning, tracerouting, probing, unit tests, attacks or network discovery (it can replace hping, 85% of nmap, arpspoof, arp-sk, arping, tcpdump, wireshark, p0f, etc.). ... -
MongoDB Atlas runs apps anywhereMongoDB Atlas gives you the freedom to build and run modern applications anywhere—across AWS, Azure, and Google Cloud. With global availability in over 115 regions, Atlas lets you deploy close to your users, meet compliance needs, and scale with confidence across any geography.
-
5
netsniff-ng
A Swiss army knife for your daily Linux network plumbing
netsniff-ng is a free Linux networking toolkit, a Swiss army knife for your daily Linux network plumbing if you will. Its gain of performance is reached by zero-copy mechanisms, so that on packet reception and transmission the kernel does not need to copy packets from kernel space to user space and vice versa. Our toolkit can be used for network development and analysis, debugging, auditing, or network reconnaissance. -
6
Arkime
A full packet capturing, indexing, and database system
Arkime is an open source, large-scale, full packet capturing, indexing, and database system designed to augment existing security infrastructure by storing and indexing network traffic in standard PCAP format. It offers full network visibility, facilitating the swift identification and resolution of security and network issues. Security teams gain access to the necessary network visibility data essential for responding to and investigating incidents to expose the full attack scope. Designed to be deployed across multiple clustered systems, Arkime provides the ability to scale to hundreds of gigabits per second. ... -
7
PcapPlusPlus
Multiplatform C++ library for parsing and crafting of network packets
...PcapPlusPlus is available in popular package managers such as Homebrew and Conan. PcapPlusPlus provides an easy-to-use interface for reading and writing network packets into files.It supports the most popular file formats which are PCAP and PCAPNG. -
8
tcpreplay
edit and replay captured network traffic
tcpreplay is a suite of tools to edit and replay captured network traffic. -
9
VoIP monitor
VoIP SIP and SKINNY quality analyzer and packet / audio recording tool
...VoIPmonitor is designed to analyze quality of VoIP call based on network parameters - delay variation and packet loss according to ITU-T G.107 E-model which predicts quality on MOS scale. Calls with all relevant statistics are saved to MySQL or ODBC database. Optionally each call can be saved to pcap file with either only SIP / SKINNY protocol or SIP/RTP/RTCP/T.38/udptl protocols. VoIPmonitor can also decode audio. -
Full-stack observability with actually useful AI | Grafana CloudBuilt on open standards like Prometheus and OpenTelemetry, Grafana Cloud includes Kubernetes Monitoring, Application Observability, Incident Response, plus the AI-powered Grafana Assistant. Get started with our generous free tier today.
-
10
Cockatrice III
A Macintosh m68k emulator
I'm taking an ancient version of BasiliskII and adding features that interest me, starting with SDL support, OS X, Linux and Windows, support for SLiRP and PCAP for native networking. -
11
jfMonitor
Network / Storage Monitoring Solution
...Usage: - jfMonitor is a multi-client / server setup - each client will report file system usage to the server - any client (or server) can also ping any locally connected network which requires pcap installed. WebSite : http://jfmonitor.sf.net Source Code : https://github.com/pquiring/javaforce/tree/master/projects/jfmonitor -
12
fwknop
Single Packet Authorization, Port Knocking
fwknop stands for the "FireWall KNock OPerator", and implements an authorization scheme called Single Packet Authorization (SPA). This method of authorization is based around a default-drop packet filter (fwknop supports iptables and firewalld on Linux, ipfw on FreeBSD and Mac OS X, and PF on OpenBSD) and libpcap. SPA is essentially next-generation port knocking (more on this below). The design decisions that guide the development of fwknop can be found in the blog post "Single Packet... -
13
Yet Another BACnet Explorer
Graphical explorer for BACnet and Free BACnet library in C#
Graphical explorer program written in C#, for browsing BACnet devices (run on Windows & Linux). Supports BACnet MS/TP, Ethernet, IPv4, IPv6, SecureConnect Basic functions for read, write, read multiple, write multiple, iam, whois, subscribeCOV, notify, WriteFile, ReadFile etc. Includes three demo server applications : a generic server, a wall mounted room controller simulator, a weather server (gets data from an Internet webservice). Includes a lot of samples C# source code. Raspberry... -
14
ngrep strives to provide most of GNU grep's common features,applying them to the network layer. ngrep is a pcap-aware tool that will allow you to specify extended regular expressions to match against data payloads of packets. SUPPORT/REPORTING BUGS: please use https://github.com/jpr5/ngrep/issues Thank you!
-
15
IOT network monitor
raspberry pi4 image using wifi in APN mode for IOT network monitoring
A Raspberry pi4 is used to run wifi in APN mode, and IOT devices are subbed to this SSID, and packet capture and interrogation are performed on the IOT traffic. Many statistics and plots are derived from the IOT traffic. This "iotsnoop" project also contains the previous project "imonitorg" which is a full, long term monitoring of a user's Internet connection with stats and plots. All stats and plots are available via webpage served by pi4. 802.11g to max range, minimize IOT traffic. ... -
16
Bit-Twist (Packet generator/editor)
Packet generator and packet editor for Windows, Linux, BSD, and macOS
...It is designed to complement tcpdump, which by itself has done a great job at capturing network traffic. With Bit-Twist, you can now regenerate your captured traffic onto a live network! Packets are generated from tcpdump trace file (.pcap file). Bit-Twist comes with a comprehensive trace file editor to allow you to change the contents of a trace file. Bit-Twist is designed for exceptional speed, allowing you to edit 10 million packets in under 3 seconds and send them over a live network at throughput levels that match your NIC's maximum line rate, up to 10 Gbps. ... -
17
alp
Access Log Profiler
alp is Access Log Profiler. -
18
Termshark
A terminal UI for tshark, inspired by Wireshark
A terminal user-interface for tshark, inspired by Wireshark. If you're debugging on a remote machine with a large pcap and no desire to scp it back to your desktop, termshark can help! Read pcap files or sniff live interfaces (where tshark is permitted). Filter pcaps or live captures using Wireshark's display filters. Reassemble and inspect TCP and UDP flows. View network conversations by protocol. Copy ranges of packets to the clipboard from the terminal. -
19
Tranalyzer
Tranalyzer flow generator packet analyzer moved to: tranalyzer.com
The Anteater moves to a new site, available under tranalyzer.com. This tool generates extended netflow-like flow/packet statistics from large pcap files or ethernet interfaces. It is intended to serve as a tool for IT troubleshooting, encrypted traffic mining, AI preprocessing and forensic analysis. A packet based "tshark mode" for detailed header and content inspection is improved for troubleshooting and security purposes. Flow based and packet based content inspection and extraction, better reporting, geo and organisation labeling, forensics support and encapsulation support such as ethip, teredo, anything in anything, SCTP, etc are new features of the 0.8.14. ... -
20
PacketStreamer
Distributed tcpdump for cloud native environments
...Traffic streams may be compressed and/or encrypted using TLS. The PacketStreamer receiver accepts PacketStreamer streams from multiple remote sensors and writes the packets to a local pcap capture file. PacketStreamer sensors collect raw network packets on remote hosts. It selects packets to capture using a BPF filter, and forwards them to a central receiver process where they are written in pcap format. Sensors are very lightweight and impose little performance impact on the remote hosts. PacketStreamer sensors can be run on bare-metal servers, on Docker hosts, and on Kubernetes nodes. -
21
RCDCap
RCDCap is a remote capture preprocessor
RCDCap is a packet processing framework. At its core, it incorporates basic mechanisms for local and remote capturing and decapsulation of packets (CISCO ERSPAN and HP ERM are supported). It can be extended to support many types of packet-based traffic analysis by creating plug-ins and loading them in the main application. It includes many optimizations to ensure high performance traffic processing. Some of them are: multithreaded traffic processing; explicit thread pinning; configurable... -
22
pyWhat
Identify emails, IP addresses, and more
pyWhat is a Python-based identification tool designed to figure out “what” a piece of text or file content represents, especially in security and OSINT workflows. Given inputs such as hex strings, URLs, email addresses, IP addresses, credit card numbers, cryptocurrency wallets, or entire .pcap capture files, it scans for structured patterns and tells you what it finds. The tool is recursive: it can traverse files and directories to extract meaningful entities, which is useful when analyzing malware samples, network captures, or code repositories at scale. It offers powerful filters called “tags” and distributions that let you narrow results to specific categories like bug bounties, cryptocurrencies, or AWS-related artifacts. ... -
23
pcapfix
repair corrupted pcap and pcapng files
this tool tries to repair your broken pcap and pcapng files by fixing the global header respectively packet blocks and recovering the packets by searching und guessing the packet headers or blocks -
24
netsnake-sniffer
Network sniffer which a similar to WireShark with sending own packets
...It has an ability to filter intercepted packets by source ip,source port, destination ip,destination port, type of protocol and length packets. It is possible to save a dump of captured packets in .pcap file extension for opening by WireShark software. Also,the main advantage of netsnake is sending your own network packets (ARP,TCP/IP,UDP) whith chosen parameters including payload data.which is byte array with max length = 1450 bytes. If your array of bytes has more 1450 bytes, it breaks into packages. My GitHub repository https://github.com/pavelinfsec2020/netsnake TUTORIAL you can watch in my videos: (EN) https://www.youtube.com/watch?... -
25
Eterscope traces graphs of specified traffic. It takes multiples tcpdump-like filters (using PCAP) and traces multitrack bandwidth graphs of the packets that match the specified filters on a network interface.
