Alternatives and similar repositories for clients

Users that are interested in clients are comparing it to the libraries listed below

• openargus / argus
  Argus Sensor
  ☆70Updated this week
• corelight / community-id-spec
  An open standard for hashing network flows into identifiers, a.k.a "Community IDs".
  ☆182Updated 10 months ago
• StamusNetworks / gophercap
  Accurate, modular, scalable PCAP manipulation tool written in Go.
  ☆94Updated last year
• DCSO / fever
  fast, extensible, versatile event router for Suricata's EVE-JSON format
  ☆55Updated 3 months ago
• pevma / SEPTun-Mark-II
  Suricata Extreme Performance Tuning guide - Mark II
  ☆118Updated 7 years ago
• fmadio / pcap2json
  High Speed PCAP to JSON conversion utility
  ☆106Updated last year
• fmadio / pcap_flow
  calculate flow information from PCAP and extract tcp streams
  ☆70Updated last year
• theparanoids / spicy-noise
  A Spicy protocol analyzer for WireGuard
  ☆29Updated 5 years ago
• utoni / nDPId
  Tiny nDPI based deep packet inspection daemons / toolkit.
  ☆84Updated 2 months ago
• zeek / zeek-af_packet-plugin
  Plugin providing native AF_Packet support for Zeek.
  ☆34Updated 3 weeks ago
• zeek / zeek-agent
  This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2
  ☆123Updated 4 years ago
• zeek / time-machine
  Time-Machine Dynamic Bulk Packet Recorder
  ☆36Updated 3 months ago
• zeek / zeek-agent-v2
  Open source endpoint agent providing host information to Zeek. [v2]
  ☆85Updated last month
• quadrantsec / sagan
  Sagan is a multi-threads, high performance log analysis engine. At it's core, Sagan similar to Suricata/Snort but with logs rather th…
  ☆184Updated 4 months ago
• pevma / SEPTun
  Suricata Extreme Performance Tuning guide
  ☆211Updated 7 years ago
• zeek / spicy-analyzers
  Growing collection of Spicy-based protocol and file analyzers for Zeek
  ☆31Updated 10 months ago
• DynamiteAI / dynamite-nsm
  DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…
  ☆171Updated 2 years ago
• salesforce / GQUIC_Protocol_Analyzer
  GQUIC Protocol Analyzer for Zeek (Bro) Network Security Monitor
  ☆78Updated last year
• corelight / zeek-community-id
  Zeek support for Community ID flow hashing.
  ☆36Updated 2 years ago
• LibtraceTeam / libprotoident
  Network traffic classification library that requires minimal application payload
  ☆213Updated last year
• isginf / pcap-diff
  Diff two or more PCAP files
  ☆110Updated 4 years ago
• irtimmer / bro-xdp_packet-plugin
  Plugin providing AF_XDP support for Bro.
  ☆14Updated 4 years ago
• brimdata / brimcap
  Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
  ☆83Updated 3 months ago
• f18m / large-pcap-analyzer
  A command-line utility program that performs some simple operations on PCAP files (Wireshark/tcpdump traces) very quickly. Allows you to …
  ☆110Updated 4 months ago
• isc-projects / dnsgen
  DNS packet generator
  ☆46Updated last year
• gamelinux / prads
  Passive Real-time Asset Detection System
  ☆245Updated last year
• DNS-OARC / dnsjit
  Engine for capturing, parsing and replaying DNS
  ☆60Updated last week
• secureworks / flowsynth
  a network packet capture compiler
  ☆201Updated 3 years ago
• bitkeks / python-netflow-v9-softflowd
  PyPI "netflow" package. NetFlow v9 parser, collector and analyzer implemented in Python 3. Developed and tested with softflowd
  ☆120Updated last year
• JustinAzoff / flow-indexer
  Flow-Indexer indexes flows found in chunked log files from bro,nfdump,syslog, or pcap files
  ☆44Updated last year