Malcolm
Traffic analyzer
A powerful tool suite for analyzing and visualizing network traffic data
Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.
368 stars
20 watching
59 forks
Language: Python
last commit: 3 months ago
Linked from 2 awesome lists
arkimecybersecurityinfosecnetwork-securitynetwork-traffic-analysisnetworksecuritynetworktrafficanalysisopensearchopensearch-dashboardspcapsecuritysuricatazeek
rshipp/awesome-malware-analysis
nyquist/awesome-networkingRelated projects:
| Repository | Description | Stars |
|---|---|---|
 cisagov/malcolm | A network traffic analysis tool suite that accepts various data formats and provides visualization and incident response capabilities. | 2,001 |
 tomchop/malcom | Analyzes network traffic to detect malware communication and behavior | 1,158 |
 ch3k1/squidmagic | Analyzes web-based network traffic to detect malicious command and control servers using Squid proxy server and Spamhaus | 78 |
 michoo/pci | Analyzes network traffic to investigate packet interactions and visualize connections on a graph-based platform. | 90 |
 activecm/rita | A framework for detecting malicious communication patterns in network traffic by analyzing Zeek logs. | 215 |
 shmohammadi86/netdecode | A tool to decode and analyze network traffic patterns | 0 |
 cisco/mercury | A tool for analyzing and extracting metadata from network packets | 447 |
 srinivas11789/pcapxray | A tool to visualize network traffic and extract information from packet captures | 1,700 |
 phaethon/kamene | A tool for crafting and analyzing network packets and pcap files to support security research and testing. | 869 |
 sunwxg/golibwireshark | A Go-based tool for decoding and analyzing network capture files using the libwireshark library. | 29 |
 linklayer/reversegear | Automated toolset for analyzing and decoding automotive network traffic logs | 46 |
 certego/pcapmonkey | An analysis tool for packet capture files using Suricata and Zeek | 145 |
 benjeems/packetstrider | Analyzes network traffic from SSH connections to detect potential security threats and reverse sessions. | 254 |
 thewhiteh4t/thewhiteh4t | A toolkit for analyzing and manipulating network traffic patterns to identify potential security threats | 93 |
 marty90/netlytics | A framework for performing advanced analytics on network logs using Hadoop and Apache Spark | 9 |