Alternatives and similar repositories for tcpsession

Users that are interested in tcpsession are comparing it to the libraries listed below

• fatemabw / kyd
  DHCP Fingerprinting
  ☆28Updated 4 years ago
• ANSSI-FR / route_leaks
  BGP Route Leaks Detection
  ☆71Updated 6 years ago
• H21lab / json2pcap
  Script for pcap modification, reconstruction and anonymization
  ☆19Updated 7 months ago
• caesar0301 / pcapdpi
  Using nDPI/openDPI to detect flow protocols from a PCAP file or live NIC. This program was modified from example in nDPI and I added a pe…
  ☆23Updated 9 years ago
• theparanoids / spicy-noise
  A Spicy protocol analyzer for WireGuard
  ☆29Updated 4 years ago
• irtimmer / bro-xdp_packet-plugin
  Plugin providing AF_XDP support for Bro.
  ☆14Updated 4 years ago
• OISF / suricata-trafficid
  Application and service identification rules for Suricata
  ☆18Updated 2 years ago
• zeek / spicy-analyzers
  Growing collection of Spicy-based protocol and file analyzers for Zeek
  ☆31Updated 9 months ago
• UHH-ISS / honeygrove
  A multi-purpose, modular medium-interaction honeypot based on Twisted.
  ☆19Updated 4 years ago
• D4-project / sensor-d4-tls-fingerprinting
  Extract TLS certificates from pcap files or network interfaces, fingerprint TLS client/server interactions with ja3/ja3s
  ☆37Updated 5 years ago
• JustinAzoff / pynfdump
  python wrapper for the nfdump cli application
  ☆21Updated 4 years ago
• DNS-OARC / bad-packets
  Collection of "bad" packets in PCAPs that can be used for testing software
  ☆19Updated 7 years ago
• hdm / mac-tracker
  Historical Tracking of MAC Address Assignments
  ☆30Updated this week
• faucetsdn / network-tools
  Network Tools
  ☆32Updated last year
• Cymmetria / ciscoasa_honeypot
  A low interaction honeypot for the Cisco ASA component capable of detecting CVE-2018-0101, a DoS and remote code execution vulnerability.
  ☆52Updated 6 years ago
• OISF / suricata-intel-index
  Suricata rule and intel index
  ☆31Updated 3 months ago
• elceef / dhcpf
  Passive DHCP fingerprinting implementation
  ☆51Updated 8 years ago
• EmergingThreats / log4shell-detection
  ☆12Updated 3 years ago
• ncsa / bro-simple-scan
  ☆14Updated last year
• beave / meer
  Meer (GPLv2) is a dedicated "spooler" for the Suricata & Sagan EVE output formats.
  ☆23Updated 4 years ago
• joxeankoret / deeptoad
  DeepToad is a library and a tool to clusterize similar files using fuzzy hashing
  ☆20Updated 5 years ago
• kholia / my-pcaps
  My Packet Captures, Quagga Tutorial, and Cisco Reversing.
  ☆27Updated 7 years ago
• PidgeyL / cve-search
  cve-search is a tool to import CVE (Common Vulnerabilities and Exposures) and CPE (Common Platform Enumeration) into a MongoDB to facilit…
  ☆25Updated 8 years ago
• CERN-CERT / activity_klog
  Ccollection of Linux loadable kernel modules aimed to logs any user action
  ☆26Updated 6 years ago
• mghogale / linux-antivirus
  Antivirus for Linux operating system
  ☆9Updated 8 years ago
• satta / gommunityid
  Go implementation of the Community ID flow hashing standard
  ☆20Updated 2 months ago
• D4-project / d4-core
  D4 core software (server and sample sensor client)
  ☆42Updated last year
• 7h3rAm / pcapedit
  An Interactive Pcap Editor (based on Scapy)
  ☆23Updated 4 years ago
• CrySyS / bro-step7-plugin
  A proof of concept implementation of the Siemens S7 protocol analyser for the Bro IDS.
  ☆16Updated 8 years ago
• t2mune / nield
  A tool to generate log messages related to interfaces, neighbor cache (ARP,NDP), IP address, routing, FIB rules, traffic control.
  ☆32Updated 8 months ago