f18m / large-pcap-analyzer
A command-line utility program that performs some simple operations on PCAP files (Wireshark/tcpdump traces) very quickly. Allows you to manipulate very large PCAP files that cannot be easily handled with other software like Wireshark (or tshark). Supports filtering encapsulated GTPu frames. Easily extendible.
☆110Updated last month
Alternatives and similar repositories for large-pcap-analyzer
Users that are interested in large-pcap-analyzer are comparing it to the libraries listed below
Sorting:
- Packet capture libraries benchmark☆34Updated 4 years ago
- Collection of "bad" packets in PCAPs that can be used for testing software☆19Updated 7 years ago
- calculate flow information from PCAP and extract tcp streams☆70Updated 9 months ago
- FlowScope is an oscilloscope for your network traffic. It records all traffic continuously in a ring buffer and dumps specific flows to d…☆90Updated 6 years ago
- A fast parser for DNS pcap data.☆70Updated 8 years ago
- The Official Github Repository of Daemonlogger☆22Updated 4 years ago
- High performance Deep Packet Inspection (DPI) framework to identify L7 protocols and extract and process data and metadata from network t…☆119Updated 4 years ago
- The Compressed Pcap Packet Indexing Program☆27Updated 9 years ago
- High Speed PCAP to JSON conversion utility☆103Updated 11 months ago
- This tool can replay a pcap capture at wire speed on several 10Gbps links.☆68Updated 4 years ago
- Network traffic classification library that requires minimal application payload☆211Updated 9 months ago
- LibHTP is a security-aware parser for the HTTP protocol and the related bits and pieces.☆300Updated last month
- CapAnalysis source code repository☆87Updated 6 years ago
- aka GENESIDS: Reads and parses rules using a "snort like" syntax and generates and sends packets that trigger events in signature based I…☆22Updated 6 years ago
- DPDK-Dump is able to store on disk network traffic at high speed using DPDK library.☆33Updated 9 years ago
- Tiny nDPI based deep packet inspection daemons / toolkit.☆79Updated last week
- Plugin providing AF_XDP support for Bro.☆14Updated 4 years ago
- Ipsumdump and other programs for command-line network trace manipulation.☆37Updated last year
- System for network traffic analysis and anomaly detection.☆90Updated 6 months ago
- C Library for working with network packet traces☆159Updated 3 months ago
- Netmap tutorial at SIGCOMM 2017 and AsiaBSDCon 2018☆85Updated 6 years ago
- tcptrace is a tool written by Shawn Ostermann at Ohio University, for analysis of TCP dump files.☆78Updated 8 years ago
- Application Layer IDS/IPS with iptables☆76Updated 6 years ago
- tcp reassembly☆28Updated 3 years ago
- Performs IP reassembly and strips off extraneous encapsulation (VLANs, MPLS, GRE, L2TP) in pcap files☆62Updated last year
- Using nDPI/openDPI to detect flow protocols from a PCAP file or live NIC. This program was modified from example in nDPI and I added a pe…☆23Updated 9 years ago
- DPDK-based packet capture tool☆228Updated last year
- a network packet capture compiler☆199Updated 3 years ago
- viewssld is a free, open source, non-terminating SSLv2/SSLv3/TLS traffic decryption daemon for Snort, and other Network Intrusion Detecti…☆74Updated 7 years ago
- Wireshark plugin to display Suricata analysis info☆94Updated 3 years ago