zeek / binpac
High level language for describing protocol parsers.
☆73Updated last month
Alternatives and similar repositories for binpac:
Users that are interested in binpac are comparing it to the libraries listed below
- Packet capture libraries benchmark☆34Updated 3 years ago
- Zeek's Messaging Library☆65Updated this week
- User-friendly C Library to perform TCP streams reassembly and IPv4/6 defragmentation☆108Updated 6 years ago
- ☆20Updated 3 years ago
- tcp reassembly☆28Updated 2 years ago
- viewssld is a free, open source, non-terminating SSLv2/SSLv3/TLS traffic decryption daemon for Snort, and other Network Intrusion Detecti…☆74Updated 7 years ago
- C++ parser generator for dissecting protocols & files.☆255Updated this week
- ☆25Updated 11 years ago
- A fast parser for DNS pcap data.☆70Updated 8 years ago
- LibHTP is a security-aware parser for the HTTP protocol and the related bits and pieces.☆296Updated last month
- unix socket interface for C++ raw IP/IP6/UDP/TCP, Layer2 etc. framework☆40Updated last year
- Libnids is an implementation of an E-component of Network Intrusion Detection System. It emulates the IP stack of Linux 2.0.x. Libnids of…☆53Updated 8 years ago
- It is a platform to use multiprocess to combine dpdk and libnids together to support analyse packets in 10G port.☆38Updated 10 years ago
- Snort DPDK DAQ module with multiqueue support - Primarily for Napatech NICs☆29Updated 6 years ago
- High performance Deep Packet Inspection (DPI) framework to identify L7 protocols and extract and process data and metadata from network t…☆118Updated 4 years ago
- The Compressed Pcap Packet Indexing Program☆27Updated 9 years ago
- A command-line utility program that performs some simple operations on PCAP files (Wireshark/tcpdump traces) very quickly. Allows you to …☆100Updated 8 months ago
- Library and tools to access the Windows Event Log (EVT) format☆58Updated 7 months ago
- Using LibVMI to detect malware☆30Updated 2 years ago
- Network traffic classification library that requires minimal application payload☆211Updated 5 months ago
- Using nDPI/openDPI to detect flow protocols from a PCAP file or live NIC. This program was modified from example in nDPI and I added a pe…☆23Updated 8 years ago
- libnids☆109Updated last year
- C Library for working with network packet traces☆158Updated 2 months ago
- DPDK-Dump is able to store on disk network traffic at high speed using DPDK library.☆33Updated 9 years ago
- Linux kernel module for inspecting/modifying TCP socket state from user space☆87Updated 2 years ago
- Collection of "bad" packets in PCAPs that can be used for testing software☆17Updated 6 years ago
- A high-performance regular expression matching library☆91Updated 2 months ago
- Convert libvirt-QEMU-save (LQS) files to raw memory files☆37Updated last year
- Decapsulate traffic encapsulated within GRE, IPIP, 6in4, ESP (ipsec) protocols, can also remove IEEE 802.1Q (virtual lan) header. Works w…☆32Updated 6 years ago
- Netflow is a key component for network traffic monitoring. As high speed technologies such as 10 Gbps or 40 Gbps links are common in a ba…☆21Updated 9 years ago