Skip to content

6-ft/TrafficSpy

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

Β 

History

15 Commits
.gitignore
.gitignore
Β 
Β 
README.md
README.md
Β 
Β 
analyzer.py
analyzer.py
Β 
Β 
demo.pcap
demo.pcap
Β 
Β 
requirement.txt
requirement.txt
Β 
Β 

Repository files navigation

πŸ›‘οΈ TrafficSpy

Python Wireshark Scapy

GitHub Stars GitHub Issues

A professional Network Traffic Analysis tool designed for Deep Packet Inspection (DPI). This tool automates the process of reading .pcap files to identify network anomalies, top-talking devices, and protocol distributions.

πŸ› οΈ Requirements & Tools

To run this analyzer effectively, the following tools and environment are required:

1. Python Environment

  • Python 3.8+: Ensure you have the latest stable version of Python.
  • Scapy Library: The core engine used for packet parsing and dissection.

2. Network Drivers (Crucial)

  • Windows Users: You must install Npcap (in WinPcap compatibility mode) to allow Python to interface with the network stack. Download it from npcap.com.
  • Linux/macOS Users: Ensure libpcap is installed (usually pre-installed or available via apt-get install libpcap-dev).

3. Traffic Viewing (Optional but Recommended)

  • Wireshark: While this script performs the analysis, Wireshark is recommended for visually verifying the contents of your demo.pcap files.

πŸš€ Technical Stack

  • Language: Python 3
  • Library: Scapy (Packet Manipulation)
  • Data Handling: Collections (Counter for statistical analysis)
  • Format: PCAP (Packet Capture)

πŸ’» Quick Start

1. Installation

git clone https://github.com/6-ft/TrafficSpy.git
cd TrafficSpy
python analyzer.py

πŸ‘¨β€πŸ’» Author

Pulkit

GitHub: @6-ft

About

Analyze network packets with Wireshark using safe demo PCAPs.

Topics

packet-analyser cybersecurity wireshark network-analysis soc packet-capture network-security blue-team

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Languages