A simple utility to classify packets into flows using the 4-tuple (src_ip, dst_ip, src_port, dst_port) without further processing, saving each flow into a pcap file named with the 4-tuple and the timestamp of the first packet of the flow. The tool is designed for Deep Packet Inspection or flow classification purposes.
FEATURES
ALTERNATIVES
Pure Python implementation of Microsoft RDP protocol with various tools and support for different security layers.
Independent software vendor specializing in network security tools and network forensics.
Django based web application for network traffic analysis with protocol handling capabilities.
A tool for discovering open S3 Buckets starting from a domain using various techniques such as crawling and DNS crawling.
A network responder supporting various protocols with minimal assumptions on client intentions.
NFStream is a multiplatform Python framework for network flow data analysis with a focus on speed and flexibility.
Open source DDoS protection system with centralized policy for network operators.
Safing Portmaster is an open-source application firewall that monitors network connections, blocks trackers system-wide, and allows custom filtering rules at both global and per-application levels.
PINNED

Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.

OSINTLeak
OSINTLeak is a tool for discovering and analyzing leaked sensitive information across various online sources to identify potential security risks.

ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.