network-traffic-analysis

There are 56 repositories under network-traffic-analysis topic.

  • cisagov/Malcolm

    Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.

    Language:Python2.2k55471384
  • Malcolm

    idaholab/Malcolm

    Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.

    Language:Python4302454067

  • activecm/rita

    Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.

    Language:Go38773938

  • linwhitehat/ETA-Resource

    Materials about Encrypted Traffic Analysis

    2303145

  • IQTLabs/packet_cafe

    A platform built for easy-to-use automated network traffic analysis

    Language:Jupyter Notebook599359

  • odaysec/SaaS-ZeroTraffic

    SaaS Zero - Network Traffic Monitor Professional network traffic monitoring and security analysis platform

    Language:TypeScript5711

  • stratosphereips/AIP

    The Attacker IP Prioritizer(AIP) dynamically generates resource-friendly IPv4 blocklists from Zeek network flows.

    Language:Python324459

  • Ravi-Teja-konda/Network_traffic_analyzer

    A Python-based network traffic analyzer for PCAP files, providing insights into protocol distribution, IP communications, and potential port scanning activities.

    Language:Python30105
  • Malcolm

    mmguero-dev/Malcolm

    Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.

    Language:Python12000

  • Bishal77/Hybrid-CNN-BiLSTM-architecture-for-detecting-multi-step-cyber-attack

    The model leverages the strengths of both CNNs and BiLSTM networks to effectively capture spatial and temporal patterns in network traffic data. We trained and evaluated the model using a comprehensive dataset of cyber attacks. The model achieved a high accuracy of 99%.

    Language:Jupyter Notebook8100

  • jackm-g/nettraffic-ml-notes

    Notes for technologies useful in applying ml to the unsw-nb15 dataset (Draft)

    8201

  • MaheshShukla1/Snort-IDS-Configuration-Rules-and-Examples

    This repository provides comprehensive guides, configurations, rules, and practical examples for Snort, the open-source intrusion detection system (IDS). Ideal for cybersecurity professionals and enthusiasts looking to enhance their network security skills.

    5100

  • OpenIxia/nas-cloud-demo

    Keysight NAS (IXIA) Cloud Demo Examples

    5111

  • OTARIS/OTAlyzer

    OTARIS traffic analyzer

    Language:C#5101

  • fillol/chronicle-sniffer

    Plug into extended SecOps: Bring Google Cloud's analytics to your local network. tshark captures on-prem, GCP transforms to UDM. Scalable, event-driven, via Terraform.

    Language:HCL40

  • IdanRosenzweig/Networking-Framework

    A comprehensive networking framework designed primarily for high-performance processing of raw packets. Implements most modern protocols (specifically TCP/IP) and further networking software. In addition, the project contains a suite of networking tools built entirely on top of the framework

    Language:C++4100

  • SHAJON-404/Messenger-SSL-Pinning-Bypass

    Bypass Messenger SSL pinning on Android devices.

    Language:Shell4

  • DeivisFelipe/N-BIG

    Comparative network traffic analysis using public datasets (MAWI and CAIDA) — Undergraduate thesis project (UFSM 2025/1)

    Language:Python30

  • khanh779-9/Network_Packet_Analyzer

    The "Network Packet Analyzer" project is a network packet analysis tool, helping to analyze and display information about data packets transmitted over the network.

    Language:C#3002

  • shantoroy/OS_fingerprinting_using-ML

    The project is about fingerprinting operating systems using different multi-class classification algorithms.

    Language:Python3103

  • 4xyy/network_anomaly_detector

    A simple, yet powerful Python-based network anomaly detection tool that uses machine learning to analyze network traffic and detect suspicious activity. The tool integrates with the VirusTotal API to check the reputation of anomalous IP addresses.

    Language:Python2100

  • makt96/treebased-ids

    This project is a live network monitoring dashboard that leverages tree-based machine learning algorithms to detect intrusions in real-time. The system uses Flask and Socket.IO for real-time data updates, and Chart.js for data visualization. The dashboard provides various charts to visualize network data and sends notifications for suspicious activ

    Language:Python2100

  • Opikadash/network-traffic-analyzer

    A real-time, AI-augmented network monitoring tool built with Python, Dash, and Scapy. It captures live packets or analyzes .pcap files, applies ML/AI-based filtering, detects port scans, triggers email alerts, and logs incidents. The interactive web dashboard visualizes protocol usage and traffic stats, supporting advanced visual filters.

    Language:Python2

  • UIC-InDeXLab/SignalReconstruction

    Language:C++2301

  • xgr19/Dryad

    Dryad: Deploying Adaptive Trees on Programmable Switches for Networking Classification (ICNP2023)

    Language:Python2100

  • 0xAminED/APA

    An advanced Packet Analyzer written in C that processes PCAP files to analyze network traffic.

    Language:C1100

  • AreejFatimaz/ThreatGuard-Advanced-Threat-Detection-System

    ThreatGuard is an advanced threat detection system that utilizes the CICIDS 2017 dataset for network traffic analysis and anomaly detection.

    Language:Python1100

  • ericyoc/synthetic_network_traffic_simulation_poc

    A simulation of network traffic using synthetic network traffic for 802.11, 3G GSM, 4G LTE, and 5G NR

    Language:Jupyter Notebook110

  • Iriiiiii83838/chronicle-sniffer

    # Chronicle-Sniffer Chronicle-Sniffer is a tool designed to capture and analyze network traffic efficiently. It integrates seamlessly with GCP, Terraform, and Docker, providing a robust solution for developers. 🐙✨

    Language:HCL1

  • Jenderal92/ddos-traffic-monitor

    A real-time traffic monitoring tool that detects and displays network traffic volume per IP address to identify potential DDoS attacks.

    Language:Python1

  • shngul/DDos-Attack

    Kali Linux sanal makinesi kullanarak DDoS saldırılarının simülasyonunu gerçekleştirip, oluşturulan veri seti üzerinde makine öğrenme algoritmaları ile saldırı tespiti ve normal trafikten ayırma.

    Language:Python1100

  • Soonies/WireSharkBis

    Visualisateur graphique de trafic reseau sous forme de graphe de flux

    Language:Java1102

  • Rachiid007/network_traffic_analysis

    https://gitlab.com/mini-ids/network_traffic_analysis

    Language:Python

  • ramyad06/Anomalyze-AI

    Language:Python

  • SharletAlex/Network_Traffic_Analyzer_VPN

    This project presents a smart network traffic analysis system capable of identifying VPN traffic using machine learning. It processes raw traffic data, extracts important features like protocol types and packet lengths, and uses a Random Forest Classifier to detect anonymity-based VPN connections.

    Language:Jupyter Notebook

  • YatharthKumarSaxena/CDAC-Noida-Internship-Network-Traffic-Analysis

    Real-time network packet capture and analysis using Moloch (Arkime), Wireshark, and Elastic Stack to detect anomalies, visualize patterns, and enhance cybersecurity.