Pcap
Browse 79 pcap tools
FEATURED
Network Detection and Response system for threat detection and response
NDR platform for detecting threats via network analytics and traffic analysis.
Network detection and response platform for threat detection and visibility
NDR solution with threat intelligence, PCAP analysis, and SOC services
Security data platform for log analysis, metrics, and threat hunting
Network detection and response platform for threat detection and analysis
Red Hand Analyzer is an online tool that provides automated behavioral analysis of PCAP files to detect malicious network activities and security vulnerabilities without decrypting traffic content.
netsniff-ng is a free Linux networking toolkit with zero-copy mechanisms for network development, analysis, and auditing.
A script for extracting network metadata and fingerprints such as JA3 and HASSH from packet capture files or live network traffic.
A collection of PCAPs for ICS/SCADA utilities and protocols with the option for users to contribute.
A Bluetooth 5 and 4.x sniffer using TI CC1352/CC26x2 hardware with advanced features and Python-based host-side software.
A utility for splitting packet traces along TCP connection boundaries.
PCAPdroid is a privacy-friendly app for tracking, analyzing, and blocking network connections on your device.
CapTipper is a python tool to analyze, explore, and revive HTTP malicious traffic.
A tool for classifying packets into flows based on 4-tuple without additional processing.
A wrapper around jNetPcap for packet capturing with Clojure, available for Linux and Windows.
A blog sharing packet capture files and malware samples for training and analysis, with archived posts and traffic analysis exercises.
A multi-threaded intrusion detection system using Yara for network and stream IDS
Network Dump data Displayer and Editor framework for tcpdump trace files manipulation.
A multi-threading tool for sniffing HTTP header records with support for offline and live sniffing, TCP flow statistics, and JSON output.
pcapfex is a forensic tool that extracts files from packet capture data by analyzing network traffic and identifying embedded file content.
replayproxy allows you to 're-live' a HTTP session captured in a .pcap file, parsing HTTP streams, caching them, and starting a HTTP proxy to reply to requests with matching responses.
A command-line tool that allows SQL queries to be executed directly on PCAP files for network traffic analysis with support for multiple output formats.
