Open source security data pipelines.
-
Updated
Jun 12, 2024 - C++
Open source security data pipelines.
Ingesting, pipelining, and enhancing your DNS logs with usage indicators, security analysis, and additional metadata.
Container terminal application for intercepting packets within pod/namespace using Scapy and ttyd terminal
Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.
Arkime is an open source, large scale, full packet capturing, indexing, and database system.
PcapPlusPlus is a multiplatform C++ library for capturing, parsing and crafting of network packets. It is designed to be efficient, powerful and easy to use. It provides C++ wrappers for the most popular packet processing engines such as libpcap, Npcap, WinPcap, DPDK, AF_XDP and PF_RING.
Process-aware, eBPF-based tcpdump
Scapy: the Python-based interactive packet manipulation program & library.
The default package source of the Zeek Package Manager. Wrote a package? See the README for how to get it included.
Python-based Comprehensive Network Packet Analysis Library
Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
Testbed for testing NetFlow/IPFIX network monitoring probes. Includes tools for PCAP generation and replay of 1/10/100G network traffic.
Pcap editing and replay tools for *NIX and Windows - Users please download source from
Visualization software designed to explore large amouts of data. (this is the read-only mirror of https://gitlab.com/squey/squey)
remote network security utility in python using TCPdump and Nmap for raspberry pi.
Simple C-ITS message verification based on ASN definitions.
Add a description, image, and links to the pcap topic page so that developers can more easily learn about it.
To associate your repository with the pcap topic, visit your repo's landing page and select "manage topics."