The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning. Learn more →
Top 23 Sniffer Open-Source Projects
-
kubeshark
The API traffic analyzer for Kubernetes providing real-time K8s protocol-level visibility, capturing and monitoring all traffic and payloads going in, out and across containers, pods, nodes and clusters. Inspired by Wireshark, purposely built for Kubernetes
Project mention: Show HN: Alaz: Open-Source, Self-Hosted, eBPF-Based K8s Monitoring | news.ycombinator.com | 2023-09-06The one similar product I had come across is Kubeshark (https://github.com/kubeshark/kubeshark). But admittedly the eBPF way seems more performant theoretically (given you can afford to have a modern-enough kernel). I'm really excited to see how this project develops out.
The eBPF-mode of innovation is pretty exciting, truly a fresh lens to building software. I'm also following Akita Software - the company building an eBPF paradigm of monitoring.
-
esp32s and esp8266s are my favorite pieces of hardware... for $2 you can setup a wifi access point
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
I would check out the Proxmark3 Github repo [0]. They have a cheatsheet [1] with the basics on how to get started. I also did a talk about RFID security last year about the basics [2]
To get started, the basics are: low freq (LF) is usually around 125khz and is rarely encrypted (HID Prox is the most common in the US). The data is often encoded in Wiegand format for access control systems (something to keep in mind when reading the raw data).
High freq (HF) (aka NFC) is ~13Mhz and is readable by most Android phones with NFC. Not all tag data can be read however. HF cards support a lot of different options including data storage (normally in a block layout with permissions to read and write depending on keys) and encryption (iCLASS and SEOS being the HID offerings and very common). Some can be cloned (like hotel cards) while others (like SEOS) require a downgrade attack to work correctly (SEOS -> normal SEOS reader -> Weigand data -> older style card like HID Prox).
[0] https://github.com/RfidResearchGroup/proxmark3
[1] https://github.com/RfidResearchGroup/proxmark3/blob/master/d...
-
mirrord
Connect your local process and your cloud environment, and run local code in cloud conditions.
Project mention: The Traffic Police 🚨 - Controlling outgoing traffic with mirrord | dev.to | 2024-02-26So, you've been using mirrord to simplify your development process (if you haven’t, go here!). Naturally, you want the traffic from the app you're debugging to go through the cluster environment, so your app can communicate with its clustery pals. There is a problem though: your latest change adds some new columns to the database, and you don’t want to modify the database in the cluster and affect everyone else working on it. You do have a local instance of the database that you can modify, so your app can use that, but you still want it to talk to all the other components in the cluster. So what now? The new outgoing traffic filter feature is here to solve exactly this type of problem!
-
-
-
As long as your custom service used the rpcap protocol I'd expect it to be possible. You may find this GitHub page informative, since it includes some rpcap source code and one of the main Wireshark developers appears to be a contributor there.
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
wolfssl
The wolfSSL library is a small, fast, portable implementation of TLS/SSL for embedded devices to the cloud. wolfSSL supports up to TLS 1.3!
-
PCAPdroid (version 1.6.9): No-root network monitor and traffic dump tool for Android devices
-
awesome-canbus
:articulated_lorry: Awesome CAN bus tools, hardware and resources for Cyber Security Researchers, Reverse Engineers, and Automotive Electronics Enthusiasts.
-
ChameleonMini
The ChameleonMini is a versatile contactless smartcard emulator compliant to NFC. The ChameleonMini was developed by https://kasper-oswald.de. The device is available at https://shop.kasper.it. For further information see the Getting Started Page https://rawgit.com/emsec/ChameleonMini/master/Doc/Doxygen/html/_page__getting_started.html or the Wiki tab above.
-
Project mention: How can one encrypt LTE Networks and prevent From Types Like These | /r/cybersecurity | 2023-11-29
-
-
-
ngrep
ngrep is like GNU grep applied to the network layer. It's a PCAP-based tool that allows you to specify an extended regular or hexadecimal expression to match against data payloads of packets. It understands many kinds of protocols, including IPv4/6, TCP, UDP, ICMPv4/6, IGMP and Raw, across a wide variety of interface types, and understands BPF filter logic in the same fashion as more common packet sniffing tools, such as tcpdump and snoop.
-
-
DDOS-RootSec
DDOS Archive by RootSec (Scanners, BotNets (Mirai and QBot Premium & Normal and more), Exploits, Methods, Sniffers)
-
awesome-automotive-can-id
:tractor: Collect of CAN IDs and its payloads for various car brands/models in one place. Might be useful for Cyber Security Researchers, Reverse Engineers, and Automotive Electronics Enthusiasts.
-
driftnet
Driftnet watches network traffic, and picks out and displays JPEG and GIF images for display
-
ChameleonMini-rebooted
Chameleon Mini revE rebooted - Iceman Fork, the ChameleonMini is a versatile contactless smartcard emulator (NFC/RFID)
-
bioconvert
Bioconvert is a collaborative project to facilitate the interconversion of life science data from one format to another.
-
ChameleonMini-rebootedGUI
Windows based GUI for Chameleon Mini, the contactless smartcard emulator (NFC/RFID)
-
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
NOTE:
The open source projects on this list are ordered by number of github stars.
The number of mentions indicates repo mentiontions in the last 12 Months or
since we started tracking (Dec 2020).
The latest post mention was on 2024-04-07.
Sniffer related posts
- Ngrep – GNU grep applied to the network layer
- How can one encrypt LTE Networks and prevent From Types Like These
- LTESniffer
- How do I debug a LAN connection issue on Linux
- How do remote interfaces work in wireshark?
- Please help, A noob Question.
- LTESniffer – An Open-Source LTE Downlink/Uplink Eavesdropper
-
A note from our sponsor - WorkOS
workos.com | 18 Apr 2024
Index
What are some of the best open-source Sniffer projects? This list will help you:
| Project | Stars | |
|---|---|---|
| 1 | kubeshark | 10,525 |
| 2 | esp_wifi_repeater | 4,651 |
| 3 | proxmark3 | 3,448 |
| 4 | mirrord | 3,372 |
| 5 | BruteShark | 2,908 |
| 6 | tcpdump | 2,533 |
| 7 | libpcap | 2,505 |
| 8 | wolfssl | 2,166 |
| 9 | PCAPdroid | 1,855 |
| 10 | awesome-canbus | 1,740 |
| 11 | ChameleonMini | 1,678 |
| 12 | LTESniffer | 1,324 |
| 13 | sniffglue | 1,044 |
| 14 | node_pcap | 925 |
| 15 | ngrep | 848 |
| 16 | sniffer | 700 |
| 17 | DDOS-RootSec | 660 |
| 18 | awesome-automotive-can-id | 458 |
| 19 | driftnet | 429 |
| 20 | ChameleonMini-rebooted | 376 |
| 21 | bioconvert | 351 |
| 22 | ChameleonMini-rebootedGUI | 280 |
| 23 | nRF-Sniffer-for-802.15.4 | 200 |
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com