PcapvizVisualize network topologies and collect graph statistics based on pcap files
DnscapNetwork capture utility designed specifically for DNS traffic
Pypacker📦 The fastest and simplest packet manipulation lib for Python
CuisharkA protocol analyzer like a wireshark on CUI. cuishark is using libwireshark to analyze packets. https://cuishark.slankdev.net
GenetGraphical network analyzer powered by web technologies
WinsharkA wireshark plugin to instrument ETW
SkydiveAn open source real-time network topology and protocols analyzer
JoincapMerge multiple pcap files together, gracefully.
PasserPassive service locator, a python sniffer that identifies servers, clients, names and much more
Libpcapthe LIBpcap interface to various kernel packet capture mechanism
Tcpdumpthe TCPdump network dissector
LibtinsHigh-level, multiplatform C++ network packet sniffing and crafting library.
Captagent100% Open-Source Packet Capture Agent for HEP
Analyzer🔍 Offline Analyzer for extracting features, artifacts and IoCs from Windows, Linux, Android, iPhone, Blackberry, macOS binaries, emails and more
PcapplusplusPcapPlusPlus is a multiplatform C++ library for capturing, parsing and crafting of network packets. It is designed to be efficient, powerful and easy to use. It provides C++ wrappers for the most popular packet processing engines such as libpcap, WinPcap, DPDK and PF_RING.
PackagesThe default package source of the Zeek Package Manager
DaggyDaggy - Data Aggregation Utility. Open source, free, cross-platform, server-less, useful utility for remote or local data aggregation and streaming
Go IexA Go library for accessing the IEX Developer API.
NetworkmlMachine learning plugins for network traffic
NetbootPackages and utilities for network booting
PotironPotiron - Normalize, Index and Visualize Network Capture
HcxtoolsPortable (that doesn't include proprietary/commercial operating systems) solution for conversion of cap/pcap/pcapng (gz compressed) WiFi dump files to hashcat formats (recommended by hashcat) and to John the Ripper formats. hcx: h = hash, c = convert and calculate candidates, x = different hashtypes
Pcapxray❄️ PcapXray - A Network Forensics Tool - To visualize a Packet Capture offline as a Network Diagram including device identification, highlight important communication and file extraction
RtpdumpExtract audio file from RTP streams in pcap format
MalcomMalcom - Malware Communications Analyzer
Net2pcapNet2PCAP is a simple network-to-pcap capture file for Linux. Its goal is to be as simple as possible to be used in hostile environments
HcxdumptoolSmall tool to capture packets from wlan devices.
Crafter🔬 An R package to work with PCAPs
PcapfsA FUSE module to mount captured network data
HomerHOMER - 100% Open-Source SIP / VoIP Packet Capture & Monitoring
TapirxFree and open-source medical device discovery and identification
KameneNetwork packet and pcap file crafting/sniffing/manipulation/visualization security tool. Originally forked from scapy in 2015 and providing python3 compatibility since then.
ScapyScapy: the Python-based interactive packet manipulation program & library. Supports Python 2 & Python 3.
TcpreplayPcap editing and replay tools for *NIX and Windows - Users please download source from
NfstreamNFStream: a Flexible Network Data Analysis Framework.
SngrepNcurses SIP Messages flow viewer
ArkimeArkime (formerly Moloch) is an open source, large scale, full packet capturing, indexing, and database system.
QcsuperQCSuper is a tool communicating with Qualcomm-based phones and modems, allowing to capture raw 2G/3G/4G radio frames, among other things.
Packet AgentA toolset for network packet capture in Cloud/Kubernetes and Virtualized environment.
ZeekZeek is a powerful network analysis framework that is much different from the typical IDS you may know.
PacketqA tool that provides a basic SQL-frontend to PCAP-files
PoseidonPoseidon is a python-based application that leverages software defined networks (SDN) to acquire and then feed network traffic to a number of machine learning techniques. The machine learning algorithms classify and predict the type of device.
Tcptermtcpterm is a packet visualizer in TUI.
ArduinopcapA library for creating and sending .pcap files for Wireshark and other programms.
FastnetmonFastNetMon - very fast DDoS sensor with sFlow/Netflow/IPFIX/SPAN support
Pypcappypcap - python libpcap module, forked from code.google.com/p/pypcap, now actively maintained
ocaml-pcapOCaml code for generating and analysing pcap (packet capture) files
Zeek-Network-Security-MonitorA Zeek Network Security Monitor tutorial that will cover the basics of creating a Zeek instance on your network in addition to all of the necessary hardware and setup and finally provide some examples of how you can use the power of Zeek to have absolute control over your network.
PcapVizVisualize network topologies and collect graph statistics based on pcap files
sniffer🤒 A modern alternative network traffic sniffer.
brimcapConvert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
pciPacket communication investigator