Comfortably monitor your Internet traffic 🕵️‍♂️

Scapy: the Python-based interactive packet manipulation program & library.

jq for binary formats - tool, language and decoders for working with binary and text formats

A terminal UI for tshark, inspired by Wireshark

🐸 Identify anything. pyWhat easily lets you identify emails, IP addresses, and more. Feed it a .pcap file or some text and it'll tell you what it is! 🧙‍♀️

Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.

Arkime is an open source, large scale, full packet capturing, indexing, and database system.

FastNetMon - very fast DDoS sensor with sFlow/Netflow/IPFIX/SPAN support

Network Analysis Tool

PcapPlusPlus is a multiplatform C++ library for capturing, parsing and crafting of network packets. It is designed to be efficient, powerful and easy to use. It provides C++ wrappers for the most popular packet processing engines such as libpcap, Npcap, WinPcap, DPDK, AF_XDP and PF_RING.

the TCPdump network dissector

the LIBpcap interface to various kernel packet capture mechanism

An open source real-time network topology and protocols analyzer

No-root network monitor, firewall and PCAP dumper for Android

A small set of tools to convert packets from capture files to hash files for use with Hashcat or John the Ripper.

Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.

High-level, multiplatform C++ network packet sniffing and crafting library.

⭐ ⭐ Distributed tcpdump for cloud native environments ⭐ ⭐

Small tool to capture packets from wlan devices.

❄️ PcapXray - A Network Forensics Tool - To visualize a Packet Capture offline as a Network Diagram including device identification, highlight important communication and file extraction