PacketProbe - Passive Vulnerability Scanner

PacketProbe is a Python-based passive vulnerability scanner that analyses PCAP files to detect insecure protocols and leaked FTP credentials. It's ideal for blue teamers, SOC analysts, or students learning about network forensics and protocol security.

Features

Passive analysis of .pcap files (no network interaction)
Detects insecure protocols:
- FTP
- TELNET
- HTTP
- TLS 1.0 / 1.1
- SSL
Extracts leaked FTP credentials
Prints scan summaries with risk explanations and secure recommendations
Generates exportable plaintext report files

Requirements

Python 3.10+
PyShark
Colorama
Tkinter (usually comes pre-installed with Python)

Install dependencies:

pip install pyshark colorama

Creating Python Virtual Environment:

# Windows
python -m venv venv
.\venv\Scripts\activate

# macOS/Linux
python3 -m venv venv
source venv/bin/activate

How To Run

In your terminal run

python .\packetprobe.py

You should be then be prompted if you would like to proceed.

Entering Y, a file explorer will appear to select the PCAP to analyse.

Name		Name	Last commit message	Last commit date
Latest commit History 6 Commits
pcaps		pcaps
.gitignore		.gitignore
README.md		README.md
packetprobe.py		packetprobe.py

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

PacketProbe - Passive Vulnerability Scanner

Features

Requirements

Install dependencies:

Creating Python Virtual Environment:

How To Run

About

Uh oh!

Releases

Packages

Uh oh!

Contributors

Uh oh!

Languages

Folders and files

Latest commit

History

Repository files navigation

PacketProbe - Passive Vulnerability Scanner

Features

Requirements

Install dependencies:

Creating Python Virtual Environment:

How To Run

About

Resources

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Uh oh!

Contributors

Uh oh!

Languages

Packages