zeek / binpac
High level language for describing protocol parsers.
☆75Updated this week
Alternatives and similar repositories for binpac:
Users that are interested in binpac are comparing it to the libraries listed below
- Packet capture libraries benchmark☆34Updated 4 years ago
- User-friendly C Library to perform TCP streams reassembly and IPv4/6 defragmentation☆109Updated 7 years ago
- A fast parser for DNS pcap data.☆70Updated 8 years ago
- A command-line utility program that performs some simple operations on PCAP files (Wireshark/tcpdump traces) very quickly. Allows you to …☆107Updated 3 weeks ago
- Zeek's Messaging Library☆67Updated this week
- ☆25Updated 12 years ago
- libnids☆110Updated last year
- The Compressed Pcap Packet Indexing Program☆27Updated 9 years ago
- DSSL library: network capture and SSL decryption toolkit☆25Updated 5 years ago
- ☆20Updated 3 years ago
- Decapsulate traffic encapsulated within GRE, IPIP, 6in4, ESP (ipsec) protocols, can also remove IEEE 802.1Q (virtual lan) header. Works w…☆32Updated 6 years ago
- A library for GDB (with python support), that adds useful functions to the standard 'gdb' library.☆78Updated 13 years ago
- ☆37Updated last year
- Collection of "bad" packets in PCAPs that can be used for testing software☆18Updated 7 years ago
- C Library for working with network packet traces☆159Updated 2 months ago
- It is a platform to use multiprocess to combine dpdk and libnids together to support analyse packets in 10G port.☆38Updated 10 years ago
- Plugin providing AF_XDP support for Bro.☆14Updated 3 years ago
- UNIX domain socket tracing LD_PRELOAD wrapper, mirror from git://git.gnumonks.org/udtrace☆49Updated 5 years ago
- Network traffic classification library that requires minimal application payload☆212Updated 8 months ago
- FlowScope is an oscilloscope for your network traffic. It records all traffic continuously in a ring buffer and dumps specific flows to d…☆90Updated 6 years ago
- Advanced process execution monitoring utility for linux (procmon like)☆84Updated 9 years ago
- A survey of techniques to hook and/or replace functions in executable binaries or shared libraries☆27Updated 4 years ago
- The Libnids parallelized on commercial multi-core systems☆27Updated 7 years ago
- **NOTE**: This is outdated and no longer maintained. There's a new version at https://github.com/zeek/spicy.☆40Updated 7 years ago
- Libnids is an implementation of an E-component of Network Intrusion Detection System. It emulates the IP stack of Linux 2.0.x. Libnids of…☆53Updated 9 years ago
- Heap analysis tooling for ptmalloc☆44Updated 2 years ago
- Snort DPDK DAQ module with multiqueue support - Primarily for Napatech NICs☆28Updated 6 years ago
- Binary Analysis Tool (LEGACY)☆79Updated 2 years ago
- Netfilter kernel module for Deep Packet Inspection filtering☆48Updated 7 years ago
- calculate flow information from PCAP and extract tcp streams☆69Updated 9 months ago