f18m / large-pcap-analyzer
A command-line utility program that performs some simple operations on PCAP files (Wireshark/tcpdump traces) very quickly. Allows you to manipulate very large PCAP files that cannot be easily handled with other software like Wireshark (or tshark). Supports filtering encapsulated GTPu frames. Easily extendible.
☆103Updated 3 weeks ago
Alternatives and similar repositories for large-pcap-analyzer:
Users that are interested in large-pcap-analyzer are comparing it to the libraries listed below
- FlowScope is an oscilloscope for your network traffic. It records all traffic continuously in a ring buffer and dumps specific flows to d…☆91Updated 6 years ago
- Packet capture libraries benchmark☆34Updated 4 years ago
- Network traffic classification library that requires minimal application payload☆212Updated 6 months ago
- High performance Deep Packet Inspection (DPI) framework to identify L7 protocols and extract and process data and metadata from network t…☆119Updated 4 years ago
- High Speed PCAP to JSON conversion utility☆102Updated 8 months ago
- This tool can replay a pcap capture at wire speed on several 10Gbps links.☆67Updated 4 years ago
- Ipsumdump and other programs for command-line network trace manipulation.☆37Updated last year
- User-friendly C Library to perform TCP streams reassembly and IPv4/6 defragmentation☆108Updated 6 years ago
- Accurate, modular, scalable PCAP manipulation tool written in Go.☆87Updated 10 months ago
- fast, extensible, versatile event router for Suricata's EVE-JSON format☆51Updated 8 months ago
- tcp reassembly☆28Updated 3 years ago
- calculate flow information from PCAP and extract tcp streams☆69Updated 7 months ago
- Performs IP reassembly and strips off extraneous encapsulation (VLANs, MPLS, GRE, L2TP) in pcap files☆62Updated last year
- High level language for describing protocol parsers.☆74Updated last week
- Plugin providing AF_XDP support for Bro.☆14Updated 3 years ago
- Collection of "bad" packets in PCAPs that can be used for testing software☆17Updated 7 years ago
- C Library for working with network packet traces☆158Updated 2 weeks ago
- It is a platform to use multiprocess to combine dpdk and libnids together to support analyse packets in 10G port.☆38Updated 10 years ago
- System for network traffic analysis and anomaly detection.☆90Updated 4 months ago
- ☆26Updated 2 years ago
- add dpdk interface and packet processing to suricata in worker mode☆64Updated 4 years ago
- Diff two or more PCAP files☆106Updated 3 years ago
- The Official Github Repository of Daemonlogger☆21Updated 3 years ago
- DPDK-Dump is able to store on disk network traffic at high speed using DPDK library.☆33Updated 9 years ago
- Snort DPDK DAQ module with multiqueue support - Primarily for Napatech NICs☆29Updated 6 years ago
- Netfilter kernel module for Deep Packet Inspection filtering☆47Updated 6 years ago
- A open source program for TCP analysis of PCAP files☆113Updated 6 years ago
- Connection Tracker is a passive network connection tracker for profiling, history, auditing and network discovery.☆47Updated 7 years ago
- Using nDPI/openDPI to detect flow protocols from a PCAP file or live NIC. This program was modified from example in nDPI and I added a pe…☆23Updated 8 years ago
- Wireshark plugin to display Suricata analysis info☆93Updated 3 years ago