Show HN: Python PCAP Analyzer

Category: security

Tags: network-forensics, pcap-analysis, security-tool

Score: 6.3/10 (Innovation: 5, Technical: 7, Documentation: 7, Utility: 6)

A Python offline network forensics tool that analyzes pcap files for malicious activity like C2 beaconing and data exfiltration using behavioral detectors and optional YAML rule sets. Its combination of offline privacy, configurable confidence thresholds, and support for both signature and anomaly detection makes it a practical utility for security analysts.

Target audience: security analysts, incident responders, network defenders

Repository: https://github.com/Raduurjan/Python_PCAP_analyzer · Python

View on Hacker News