PcapPlusPlus by seladb

PcapPlusPlus is a multiplatform C++ library for capturing, parsing and crafting of network packets. It is designed to be efficient, powerful and easy to use. It provides C++ wrappers for the most popular packet processing engines such as libpcap, Npcap, WinPcap, DPDK, AF_XDP and PF_RING.

updated at May 26, 2024, 1:54 p.m.

94 +0

2,595 +7

633 +0

scalpel by sleuthkit

Scalpel is an open source data carving tool. It is not being actively maintained.

updated at May 26, 2024, 1:28 a.m.

43 +0

607 +4

100 +0

CapTipper by omriher

Malicious HTTP traffic explorer

updated at May 25, 2024, 4:49 p.m.

63 +0

705 +5

160 +1

tcpreplay by appneta

Pcap editing and replay tools for *NIX and Windows - Users please download source from

updated at May 25, 2024, 9:14 a.m.

51 +0

1,131 +4

264 +1

libnet by libnet

A portable framework for low-level network packet construction

updated at May 25, 2024, 8:22 a.m.

72 +0

885 +2

254 +0

BruteShark by odedshimon

Network Analysis Tool

updated at May 24, 2024, 11:22 p.m.

96 +0

2,934 +3

320 +1

PacketStreamer by deepfence

Distributed tcpdump for cloud native environments

updated at May 24, 2024, 5:47 p.m.

13 +0

1,854 +2

252 +0

PCAPdroid by emanuele-f

No-root network monitor, firewall and PCAP dumper for Android

updated at May 24, 2024, 5:37 p.m.

42 +0

1,971 +11

251 +4

tcpflow by simsong

TCP/IP packet demultiplexer. Download from:

updated at May 24, 2024, 4:23 p.m.

80 +0

1,648 +1

239 +0

nfstream by nfstream

NFStream: a Flexible Network Data Analysis Framework.

updated at May 24, 2024, 3:40 p.m.

28 +0

1,049 +1

118 +0

pkt2flow by caesar0301

A simple utility to classify packets into flows. It's so simple that only one task is aimed to finish. For Deep Packet Inspection or flow classification, it's so common to analyze the feature of one specific flow. I have make the attempt to use made-ready tools like tcpflows, tcpslice, tcpsplit, but all these tools try to either decrease the trace volume (under requirement) or resemble the packets into flow payloads (over requirement). I have not found a simple tool to classify the packets into flows without further processing. This is why this program is born.

updated at May 24, 2024, 5:33 a.m.

13 +0

162 +1

46 +0

sharppcap by dotpcap

Official repository - Fully managed, cross platform (Windows, Mac, Linux) .NET library for capturing packets

updated at May 23, 2024, 8:07 a.m.

60 +0

1,258 +4

266 +0

pcapfex by vikwin

'Packet Capture Forensic Evidence eXtractor' is a tool that finds and extracts files from packet capture files

updated at May 23, 2024, 5:10 a.m.

19 +0

210 +2

41 +0

dpkt by kbandla

fast, simple packet creation / parsing, with definitions for the basic TCP/IP protocols

updated at May 23, 2024, 2:51 a.m.

51 +0

1,071 +2

271 +0

joy by cisco

A package for capturing and analyzing network flow data and intraflow data, for network research, forensics, and security monitoring.

updated at May 22, 2024, 12:54 a.m.

113 +0

1,283 +1

330 +1

usbpcap by desowin

USB packet capture for Windows

updated at May 20, 2024, 2:25 p.m.

72 +0

874 +2

167 +1

chopshop by MITRECND

Protocol Analysis/Decoder Framework

updated at May 17, 2024, 7:11 p.m.

71 +0

488 +0

111 +0

PacketQ by DNS-OARC

A tool that provides a basic SQL-frontend to PCAP-files

updated at May 10, 2024, 11:43 a.m.

28 +0

389 +0

57 +0

hadoop-pcap by RIPE-NCC

Hadoop library to read packet capture (PCAP) files

updated at May 8, 2024, 12:54 p.m.

40 +0

205 +0

100 +0

ipsumdump by kohler

Ipsumdump and other programs for command-line network trace manipulation.

updated at April 26, 2024, 4:56 a.m.

6 +0

35 +0

10 +0