This project consists of two components: Library Bundles the code used to read PCAPs. Can be used within MapReduce jobs to natively read PCAP files. Implements a Hive Serializer/Deserializer (SerDe) to query PCAPs using SQL like commands. See: https://github.com/RIPE-NCC/hadoop-pcap/tree/master/hadoop-pcap-lib See: https://github.com/RIPE-NCC/hadoop-pcap/tree/master/hadoop-pcap-serde
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A Linux command-line tool that allows you to kill in-progress TCP connections based on a filter expression, useful for libnids-based applications that require a full TCP 3-way handshake for TCB creation.
WireGuard is a fast, simple, and secure VPN that uses cutting-edge cryptography, designed for ease of use and performance.
Tor Browser is a free and open-source software that allows users to browse the internet anonymously and privately.
Tcpdump is a command-line packet analyzer for capturing and analyzing network traffic.
A suite for man in the middle attacks, featuring sniffing of live connections, content filtering, and protocol dissection.
A free DNS recursive service that blocks malicious host names and protects user privacy.
NordVPN is a commercial VPN service that encrypts internet connections and hides IP addresses through a global network of servers, featuring integrated threat protection and multi-device support.
A blog sharing packet capture files and malware samples for training and analysis, with archived posts and traffic analysis exercises.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.