Open source security data pipelines.
-
Updated
May 23, 2024 - C++
Open source security data pipelines.
No-root network monitor, firewall and PCAP dumper for Android
PcapPlusPlus is a multiplatform C++ library for capturing, parsing and crafting of network packets. It is designed to be efficient, powerful and easy to use. It provides C++ wrappers for the most popular packet processing engines such as libpcap, Npcap, WinPcap, DPDK, AF_XDP and PF_RING.
Process-aware, eBPF-based tcpdump
Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.
Scapy: the Python-based interactive packet manipulation program & library.
Arkime is an open source, large scale, full packet capturing, indexing, and database system.
the TCPdump network dissector
Container terminal application for intercepting packets within pod/namespace using Scapy and ttyd terminal
DISC is a school project and won't be developed any further. The goal of this specific project was to allow two users on the same local net to communicate privately.
Project containing several tools/ scripts to recover the OpenSSH session keys used to encrypt/ decrypt SSH traffic.
Comfortably monitor your Internet traffic 🕵️♂️
The default package source of the Zeek Package Manager. Wrote a package? See the README for how to get it included.
Testbed for testing NetFlow/IPFIX network monitoring probes. Includes tools for PCAP generation and replay of 1/10/100G network traffic.
Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.
Python-based Comprehensive Network Packet Analysis Library
Add a description, image, and links to the pcap topic page so that developers can more easily learn about it.
To associate your repository with the pcap topic, visit your repo's landing page and select "manage topics."