Hot Topics

tcpreplay

PCAP over IP

What is PCAP over IP?

| | Arkime, ncat, netcat, NetworkMiner, Packetbeat, pcap, PCAP-over-IP, PolarProxy, Suricata, tcpdump, tcpreplay, tshark, Wireshark, Zeek
PCAP-over-IP is a method for reading a PCAP stream, which contains captured network traffic, through a TCP socket instead of reading the packets from a PCAP file. A simple way to create ...
NETRESEC Network Security Blog
Network drawing with Clients, SecurityOnion and the Internet

Sniffing Decrypted TLS Traffic with Security Onion

| | Bro, curl, Decrypted, HTTPS, ids, netcat, NIDS, pcap, PCAP-over-IP, PolarProxy, Security Onion, securityonion, snort, ssl, Suricata, tcpreplay, TLS, Zeek
Wouldn't it be awesome to have a NIDS like Snort, Suricata or Zeek inspect HTTP requests leaving your network inside TLS encrypted HTTPS traffic? Yeah, we think so too! We have therefore ...
NETRESEC Network Security Blog
PolarProxy flow chart

PolarProxy Released

| | DNS over HTTPS, DNS-over-TLS, DoH, DoT, HTTP/2, http2, ids, IMAPS, NIDS, pcap, PolarProxy, POP3S, SMTPS, ssl, SSLKEYLOGFILE, tcpreplay, TLS, Wireshark
I'm very proud to announce the release of PolarProxy today! PolarProxy is a transparent TLS proxy that decrypts and re-encrypts TLS traffic while also generating a PCAP file containing the decrypted traffic ...
NETRESEC Network Security Blog