Displaying 1 to 13 from 13 results

skydive - An open source real-time network topology and protocols analyzer

  •    Go

Skydive is an open source real-time network topology and protocols analyzer. It aims to provide a comprehensive way of understanding what is happening in the network infrastructure. Skydive agents collect topology informations and flows and forward them to a central agent for further analysis. All the informations are stored in an Elasticsearch database.

scapy - Scapy: the Python-based interactive packet manipulation program & library

  •    Python

Scapy is a powerful Python-based interactive packet manipulation program and library. It is able to forge or decode packets of a wide number of protocols, send them on the wire, capture them, store or read them using pcap files, match requests and replies, and much more. It is designed to allow fast packet prototyping by using default values that work.

netsniff-ng - The packet sniffing beast

  •    C

netsniff-ng is a free Linux networking toolkit, a Swiss army knife for your daily Linux network plumbing if you will. Its gain of performance is reached by zero-copy mechanisms, so that on packet reception and transmission the kernel does not need to copy packets from kernel space to user space and vice versa.

Divert - Windows Packet Divert

  •    C

Windows Packet Divert (WinDivert) is a user-mode packet interception library for Windows 7, Windows 8 and Windows 10. WinDivert enables user-mode capturing/modifying/dropping of network packets sent to/from the Windows network stack. In summary, WinDivert can Capture network packets, Filter/drop network packets, Sniff network packets, (re)inject network packets, modify network packets. It can be used to implement user-mode packet filters, sniffers, firewalls, NATs, VPNs, IDSs, tunneling applications, etc.




homer - HOMER - 100% Open-Source SIP / VoIP Packet Capture & Monitoring

  •    Shell

HOMER is a robust, carrier-grade, scalable SIP Capture system and VoiP Monitoring Application offering HEP/EEP, IP Proto4 (IPIP) encapsulation & port mirroring/monitoring support right out of the box, ready to process & store insane amounts of signaling, logs and statistics with instant search, end-to-end analysis and drill-down capabilities for ITSPs, VoIP Providers and Trunk Suppliers using SIP signaling protocol. Powered at the core by SIPCAPTURE Module for industry-standard Kamailio or OpenSIPS, HOMER provides virtually unlimited scope for granular capture configuration either stand-alone or using our companion Capture Agent Project.

n2disk - Open source components and extensions for n2disk

  •    C

If you want to learn more about n2disk please visit the User's Guide.

redis-sniffer - A Redis event sniffer and logging utility.

  •    Python

This tool will monitor a specific port and interface for redis traffic and captures the commands being sent to Redis and/or formatted full TCP dump data. This can be used for analysis for debugging or for replaying the transactions as a way of doing real load/performance testing.

rvi_capture - rvictl for Linux: capture packets sent/received by iOS devices

  •    Python

A utility to create packet capture dumps from iOS devices; useful for debugging network activity via Wireshark. libimobiledevice and python3 must be installed.


passer - Passive service locator, a python sniffer that identifies servers, clients, names and much more

  •    Python

Quick notes for getting going with passer, the passive service sniffer. You're responsible for getting permission to sniff. If you're using windows or your paths to the support files don't match mine for some other reason, let me know where they are and I'll be glad to update the script.

SWSniff - A SoulWorker packet sniffer+injector

  •    CSharp

This program automatically downloads a native binary that gets injected into the SoulWorker process. I can't vouch for it being safe and clean of malware.

dns-gazer - DNS passive monitoring tool

  •    C++

To gathering DNS query and reply logs, DNS Gazer has following advantages. Then, fluentd receives following logs.

xpcap - Cross-platform Packet Capture which supports Linux and macOS(BSD) in 1000 LOC without depending on libpcap

  •    C

Cross-platform packet capture, supports Linux, macOS(BSD) without depending on libpcap. Supported Protocols are ARP, IPv4, IPv6, TCP, UDP and ICMP. See article: How to write cross-platform packet capture using RAW Socket and BPF.