f18m / large-pcap-analyzerLinks
A command-line utility program that performs some simple operations on PCAP files (Wireshark/tcpdump traces) very quickly. Allows you to manipulate very large PCAP files that cannot be easily handled with other software like Wireshark (or tshark). Supports filtering encapsulated GTPu frames. Easily extendible.
☆110Updated 2 weeks ago
Alternatives and similar repositories for large-pcap-analyzer
Users that are interested in large-pcap-analyzer are comparing it to the libraries listed below
Sorting:
- High Speed PCAP to JSON conversion utility☆106Updated last year
- Ipsumdump and other programs for command-line network trace manipulation.☆38Updated last year
- FlowScope is an oscilloscope for your network traffic. It records all traffic continuously in a ring buffer and dumps specific flows to d…☆90Updated 6 years ago
- calculate flow information from PCAP and extract tcp streams☆70Updated last year
- Using nDPI/openDPI to detect flow protocols from a PCAP file or live NIC. This program was modified from example in nDPI and I added a pe…☆23Updated 9 years ago
- High performance Deep Packet Inspection (DPI) framework to identify L7 protocols and extract and process data and metadata from network t…☆124Updated 4 years ago
- Accurate, modular, scalable PCAP manipulation tool written in Go.☆94Updated last year
- fast, extensible, versatile event router for Suricata's EVE-JSON format☆56Updated 4 months ago
- System for network traffic analysis and anomaly detection.☆91Updated last month
- Packet capture libraries benchmark☆35Updated 4 years ago
- Diff two or more PCAP files☆110Updated 4 years ago
- C Library for working with network packet traces☆164Updated 2 weeks ago
- Collection of "bad" packets in PCAPs that can be used for testing software☆19Updated 7 years ago
- A set of tools to transfer data over a unidirectional network link (typically a network diode).☆54Updated 8 years ago
- A python library to extract TCP sessions from PCAPs.☆23Updated 4 years ago
- GQUIC Protocol Analyzer for Zeek (Bro) Network Security Monitor☆78Updated last year
- Network traffic classification library that requires minimal application payload☆215Updated last year
- DDOS Detection and Mitigation Appliance☆68Updated 8 years ago
- Plugin providing AF_XDP support for Bro.☆14Updated 4 years ago
- Tiny nDPI based deep packet inspection daemons / toolkit.☆85Updated this week
- DNS packet generator☆46Updated last year
- Tools for programmatic parsing of packet captures using Wireshark functionality☆96Updated 11 years ago
- BGP Route Leaks Detection☆71Updated 6 years ago
- A flow-based network monitor with Deep Packet Inspection☆29Updated 8 years ago
- Suricata Extreme Performance Tuning guide - Mark II☆118Updated 7 years ago
- SD-WAN security and insecurity☆172Updated 4 years ago
- Network capture utility designed specifically for DNS traffic☆286Updated this week
- Software responsible for extracting DDoS Fingerprints from traffic captures.☆69Updated last month
- The Official Github Repository of Daemonlogger☆22Updated 4 years ago
- Linux kernel module for inspecting/modifying TCP socket state from user space☆92Updated 3 years ago