A wrapper/facade/whatever to enable/ease the use of jNetPcap (a libpcap based packet sniffing lib) in Clojure
updated at Sept. 6, 2024, 12:37 p.m.
Automatically exported from code.google.com/p/socket-sentry
updated at Sept. 6, 2024, 12:46 p.m.
split a pcap file into smaller files on TCP flow boundaries
updated at Sept. 6, 2024, 12:48 p.m.
Yara is awesome, but sometimes you need to manipulate the data streams you're scanning in different ways.
updated at Sept. 6, 2024, 12:48 p.m.
Foremost is a console program to recover files based on their headers, footers, and internal data structures. c.f., http://foremost.sourceforge.net/
updated at Sept. 6, 2024, 12:49 p.m.
Some set of scripts to unpack odin packets into separate files !!! Migrated to Codeberg !!!
updated at Sept. 6, 2024, 12:50 p.m.
Hadoop library to read packet capture (PCAP) files
updated at Sept. 6, 2024, 12:50 p.m.
A simple utility to classify packets into flows. It's so simple that only one task is aimed to finish. For Deep Packet Inspection or flow classification, it's so common to analyze the feature of one specific flow. I have make the attempt to use made-ready tools like tcpflows, tcpslice, tcpsplit, but all these tools try to either decrease the trace volume (under requirement) or resemble the packets into flow payloads (over requirement). I have not found a simple tool to classify the packets into flows without further processing. This is why this program is born.
updated at Oct. 4, 2024, 1:56 p.m.
An any-snarf program that processes application protocols (HTTP/FTP/...) from tcpdump or snoop files and stores session and file data
updated at Oct. 28, 2024, 11:19 a.m.
A multi-threading tool to sniff TCP flow statistics and embedded HTTP headers from PCAP file. Each TCP flow carrying HTTP is exported to text file in json format.
updated at Oct. 31, 2024, 2:20 a.m.