zeek / binpacLinks
High level language for describing protocol parsers.
☆76Updated last month
Alternatives and similar repositories for binpac
Users that are interested in binpac are comparing it to the libraries listed below
Sorting:
- User-friendly C Library to perform TCP streams reassembly and IPv4/6 defragmentation☆109Updated 7 years ago
- C++ parser generator for dissecting protocols & files.☆281Updated last week
- Packet capture libraries benchmark☆35Updated 4 years ago
- LibHTP is a security-aware parser for the HTTP protocol and the related bits and pieces.☆306Updated last week
- C Library for working with network packet traces☆167Updated last month
- A fast parser for DNS pcap data.☆71Updated 8 years ago
- tcp reassembly☆28Updated 3 years ago
- calculate flow information from PCAP and extract tcp streams☆70Updated last year
- Linux kernel module for inspecting/modifying TCP socket state from user space☆92Updated 3 years ago
- libnids☆112Updated last year
- Advanced process execution monitoring utility for linux (procmon like)☆85Updated 9 years ago
- FlowScope is an oscilloscope for your network traffic. It records all traffic continuously in a ring buffer and dumps specific flows to d…☆90Updated 6 years ago
- ☆21Updated 3 years ago
- A command-line utility program that performs some simple operations on PCAP files (Wireshark/tcpdump traces) very quickly. Allows you to …☆110Updated last month
- Plugin providing AF_XDP support for Bro.☆14Updated 4 years ago
- Moved to https://codeberg.org/DNS-OARC/bad-packets☆19Updated 3 weeks ago
- Zeek's Messaging Library☆69Updated this week
- Network traffic classification library that requires minimal application payload☆215Updated last year
- Tool tracing syscalls in a fast way using eBPF linux kernel feature☆98Updated 2 years ago
- Using LibVMI to detect malware☆31Updated 3 years ago
- Example application of how to passively monitor multiple sockets on Linux.☆75Updated 7 years ago
- The Compressed Pcap Packet Indexing Program☆28Updated 9 years ago
- viewssld is a free, open source, non-terminating SSLv2/SSLv3/TLS traffic decryption daemon for Snort, and other Network Intrusion Detecti…☆73Updated 8 years ago
- A high-performance regular expression matching library☆94Updated last week
- High Speed PCAP to JSON conversion utility☆107Updated last year
- ☆37Updated 2 years ago
- add dpdk interface and packet processing to suricata in worker mode☆64Updated 5 years ago
- Trusted Path Execution (TPE) Linux Kernel Module☆161Updated 6 years ago
- Transform vmlinuz into a fully debuggable vmlinux that can be used with /proc/kcore☆131Updated 11 months ago
- High performance time ordered PCAP merging utility☆23Updated 3 years ago