Suricata is an open source Intrusion Detection and Prevention (IDS/IPS) engine. Suricata is developed by the Open Information Security Foundation and its supporting vendors. The engine is multi-threaded, has native IPv6 support, file extraction capabilities and many more features. It's capable of
... [More] loading existing Snort rules and signatures and supports many frontends through Barnyard2. [Less]
hping is a command-line oriented TCP/IP packet assembler/analyzer. The interface is inspired to the ping(8) unix command, but hping isn't only able to send ICMP echo requests. It supports TCP, UDP, ICMP and RAW-IP protocols, has a traceroute mode, the ability to send files between a covered channel, and many other features.
ngrep strives to provide most of GNU grep's common features, applying them to the network layer. ngrep is a pcap-aware tool that will allow you to specify extended regular or hexadecimal expressions to match against data payloads of packets. It currently recognizes IPv4/6, TCP, UDP, ICMPv4/6, IGMP
... [More] and Raw across Ethernet, PPP, SLIP, FDDI, Token Ring and null interfaces, and understands BPF filter logic in the same fashion as more common packet sniffing tools, such as tcpdump and snoop. [Less]
Packet Dump Decode (pdd) is a simple convenient GUI wrapper around the Wireshark/Ethereal tools to convert packet hexdumps into well formatted xml containing the decoded protocols and protocol contents
Using pdd, you just need to copy-paste the hexdump into pdd and hit the "Decode" button.
... [More]
NOTE: pdd is only a wrapper around the Wireshark/Ethereal tools and hence needs either (but at least one) to be already installed. [Less]
This site uses cookies to give you the best possible experience.
By using the site, you consent to our use of cookies.
For more information, please see our
Privacy Policy