ngrep is like GNU grep applied to the network layer. It's a PCAP-based tool that allows you to specify an extended regular or hexadecimal expression to match against data payloads of packets. It understands many kinds of protocols, including IPv4/6, TCP, UDP, ICMPv4/6, IGMP and Raw, across a wide variety of interface types, and understands BPF filter logic in the same fashion as more common packet sniffing tools, such as tcpdump and snoop.
updated at May 25, 2024, 3:55 a.m.
FakeNet-NG - Next Generation Dynamic Network Analysis Tool
updated at May 25, 2024, 7:06 a.m.
EVTXtract recovers and reconstructs fragments of EVTX log files from raw binary data, including unallocated space and memory images.
updated at May 25, 2024, 8:21 a.m.
A curated list of awesome YARA rules, tools, and people.
updated at May 25, 2024, 12:43 p.m.
A curated list of awesome infosec courses and training resources.
updated at May 25, 2024, 2:07 p.m.