pflarr / dns_parse
A fast parser for DNS pcap data.
☆70Updated 7 years ago
Related projects ⓘ
Alternatives and complementary repositories for dns_parse
- It is a platform to use multiprocess to combine dpdk and libnids together to support analyse packets in 10G port.☆38Updated 10 years ago
- High performance Deep Packet Inspection (DPI) framework to identify L7 protocols and extract and process data and metadata from network t…☆116Updated 3 years ago
- calculate flow information from PCAP and extract tcp streams☆69Updated 4 months ago
- Network traffic classification library that requires minimal application payload☆207Updated 3 months ago
- Plugin providing AF_XDP support for Bro.☆14Updated 3 years ago
- Netfilter kernel module for Deep Packet Inspection filtering☆46Updated 6 years ago
- **NOTE**: This is outdated and no longer maintained. There's a new version at https://github.com/zeek/spicy.☆40Updated 7 years ago
- The Compressed Pcap Packet Indexing Program☆27Updated 9 years ago
- C Library for working with network packet traces☆157Updated last week
- Ipsumdump and other programs for command-line network trace manipulation.☆37Updated 9 months ago
- DSSL library: network capture and SSL decryption toolkit☆25Updated 5 years ago
- Netflow is a key component for network traffic monitoring. As high speed technologies such as 10 Gbps or 40 Gbps links are common in a ba…☆21Updated 9 years ago
- Website for IPv6 Hitlist Service with data, software, paper of "Clusters in the Expanse: Understanding and Unbiasing IPv6 Hitlists" IMC'1…☆34Updated this week
- DNS packet generator☆41Updated 3 months ago
- High level language for describing protocol parsers.☆71Updated 3 months ago
- add dpdk interface and packet processing to suricata in worker mode☆64Updated 4 years ago
- Performs IP reassembly and strips off extraneous encapsulation (VLANs, MPLS, GRE, L2TP) in pcap files☆60Updated 9 months ago
- low-level DNS library☆19Updated 2 months ago
- This tool can replay a pcap capture at wire speed on several 10Gbps links.☆67Updated 4 years ago
- A simple utility to classify packets into flows. It's so simple that only one task is aimed to finish. For Deep Packet Inspection or flo…☆166Updated last year
- User-friendly C Library to perform TCP streams reassembly and IPv4/6 defragmentation☆107Updated 6 years ago
- FlowScope is an oscilloscope for your network traffic. It records all traffic continuously in a ring buffer and dumps specific flows to d…☆91Updated 6 years ago
- System for network traffic analysis and anomaly detection.☆87Updated 3 weeks ago
- LibHTP is a security-aware parser for the HTTP protocol and the related bits and pieces.☆289Updated last month
- aka GENESIDS: Reads and parses rules using a "snort like" syntax and generates and sends packets that trigger events in signature based I…☆22Updated 6 years ago
- Longest Prefix Match (LPM) library☆47Updated 2 years ago
- Lightweight DNS telemetry☆54Updated 2 years ago
- A command-line utility program that performs some simple operations on PCAP files (Wireshark/tcpdump traces) very quickly. Allows you to …☆98Updated 6 months ago
- Time-Machine Dynamic Bulk Packet Recorder☆35Updated 10 months ago
- viewssld is a free, open source, non-terminating SSLv2/SSLv3/TLS traffic decryption daemon for Snort, and other Network Intrusion Detecti…☆74Updated 7 years ago