nfstream by nfstream

NFStream: a Flexible Network Data Analysis Framework.

updated at May 12, 2024, 4:52 p.m.

28 +0

1,046 +3

118 +0

PCAPdroid by emanuele-f

No-root network monitor, firewall and PCAP dumper for Android

updated at May 12, 2024, 2:38 p.m.

41 -1

1,935 +20

243 +1

PcapPlusPlus by seladb

PcapPlusPlus is a multiplatform C++ library for capturing, parsing and crafting of network packets. It is designed to be efficient, powerful and easy to use. It provides C++ wrappers for the most popular packet processing engines such as libpcap, Npcap, WinPcap, DPDK, AF_XDP and PF_RING.

updated at May 12, 2024, 7:06 a.m.

95 +0

2,583 +2

632 +1

PacketStreamer by deepfence

Distributed tcpdump for cloud native environments

updated at May 11, 2024, 9:34 p.m.

13 +0

1,854 +0

252 +1

sharppcap by dotpcap

Official repository - Fully managed, cross platform (Windows, Mac, Linux) .NET library for capturing packets

updated at May 11, 2024, 4:02 p.m.

60 +0

1,249 +6

265 +1

BruteShark by odedshimon

Network Analysis Tool

updated at May 11, 2024, 3:03 p.m.

96 +0

2,927 -4

319 +1

PacketQ by DNS-OARC

A tool that provides a basic SQL-frontend to PCAP-files

updated at May 10, 2024, 11:43 a.m.

28 +1

389 +1

57 +0

dpkt by kbandla

fast, simple packet creation / parsing, with definitions for the basic TCP/IP protocols

updated at May 10, 2024, 4:27 a.m.

51 +0

1,066 +3

271 +0

libnet by libnet

A portable framework for low-level network packet construction

updated at May 9, 2024, 5:03 p.m.

72 +0

880 +2

253 -1

tcpreplay by appneta

Pcap editing and replay tools for *NIX and Windows - Users please download source from

updated at May 9, 2024, 4:03 p.m.

51 +0

1,125 +4

263 +0

CapTipper by omriher

Malicious HTTP traffic explorer

updated at May 9, 2024, 6:34 a.m.

63 +0

699 +1

159 +0

tcpflow by simsong

TCP/IP packet demultiplexer. Download from:

updated at May 9, 2024, 6:25 a.m.

80 +0

1,646 +1

239 +0

hadoop-pcap by RIPE-NCC

Hadoop library to read packet capture (PCAP) files

updated at May 8, 2024, 12:54 p.m.

40 +1

205 +2

100 +0

joy by cisco

A package for capturing and analyzing network flow data and intraflow data, for network research, forensics, and security monitoring.

updated at May 4, 2024, 11:29 a.m.

113 +0

1,281 +0

329 +0

usbpcap by desowin

USB packet capture for Windows

updated at May 1, 2024, 7:30 p.m.

72 +0

871 +0

165 +0

pkt2flow by caesar0301

A simple utility to classify packets into flows. It's so simple that only one task is aimed to finish. For Deep Packet Inspection or flow classification, it's so common to analyze the feature of one specific flow. I have make the attempt to use made-ready tools like tcpflows, tcpslice, tcpsplit, but all these tools try to either decrease the trace volume (under requirement) or resemble the packets into flow payloads (over requirement). I have not found a simple tool to classify the packets into flows without further processing. This is why this program is born.

updated at April 29, 2024, 1:10 p.m.

13 +0

161 +0

46 +0

scalpel by sleuthkit

Scalpel is an open source data carving tool. It is not being actively maintained.

updated at April 28, 2024, 4:34 p.m.

43 +0

603 +0

100 +0

ipsumdump by kohler

Ipsumdump and other programs for command-line network trace manipulation.

updated at April 26, 2024, 4:56 a.m.

6 +0

35 +0

10 +0

chopshop by MITRECND

Protocol Analysis/Decoder Framework

updated at April 25, 2024, 11:31 a.m.

71 +0

487 +0

111 +0

potiron by CIRCL

Potiron - Normalize, Index and Visualize Network Capture

updated at April 23, 2024, 1:06 p.m.

19 +0

81 +0

20 +0