Xplico is a Network Forensic Analysis Tool (NFAT).
The goal of Xplico is extract from an internet traffic capture the applications data contained. For example, from a pcap file Xplico extracts each email (POP, IMAP, and SMTP protocols), all HTTP contents, each VoIP call (SIP, MGCP, MEGACO, RTP), IRC, WhatsApp...
Xplico is able to classify more than 140 (application) protocols.
Xplico cam be used as sniffer-decoder if used in "live mode" or in conjunction with netsniff-ng.
Xplico is used also in CapAnalysis: http://www.capanalysis.net

Features

  • Network Forensic
  • Digital Forensics
  • TCP/IP Protocol Decoder
  • Packet Sniffer
  • Sniffer
  • PCAP Parser
  • IPv4 and IPv6

Project Samples

Project Activity

See All Activity >

License

GNU General Public License version 2.0 (GPLv2)

Follow Xplico

Xplico Web Site

Other Useful Business Software
$300 Free Credits for Your Google Cloud Projects Icon
$300 Free Credits for Your Google Cloud Projects

Start building on Google Cloud with $300 in free credits. No commitment, no credit card required until you're ready to scale.

Launch your next project with $300 in free Google Cloud credits—no strings attached. Test, build, and deploy without risk. Use your credits across the entire Google Cloud platform to find what works best for your needs. After your credits are used, continue with always-free tier services. Only pay when you're ready to scale. Sign up in minutes and start exploring.
Start Free Trial
Rate This Project
Login To Rate This Project

User Ratings

★★★★★
★★★★
★★★
★★
1
0
0
0
1
ease 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 0 / 5
features 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 0 / 5
design 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 0 / 5
support 1 of 5 2 of 5 3 of 5 4 of 5 5 of 5 0 / 5

User Reviews

  • Xplico does not allow parallel compiling. The Makefile under manipulators/mwmail and system/script directories fail at the rule below when launching multiple GNU Make jobs (e.g. make -j4). Replace the *.pyc with $*.*.pyc and it will compile in parallel: %.pyc: %.py rm -f $@ $(PYCMPL) $< if [ -d "__pycache__" ]; then mv __pycache__/*.pyc $@; fi
  • Thanks for software and updates.
    3 users found this review helpful.
Read more reviews >

Additional Project Details

Operating Systems

Linux

Intended Audience

Government, Information Technology, Security, Security Professionals

User Interface

Command-line, Web-based

Programming Language

C, JavaScript, PHP, Python

Database Environment

MySQL, PostgreSQL (pgsql), SQLite

Related Categories

Python Security Software, Python Network Monitoring Software, Python Information Analysis Software, Python Packet Sniffers, C Security Software, C Network Monitoring Software, C Information Analysis Software, C Packet Sniffers, PHP Security Software, PHP Network Monitoring Software, PHP Information Analysis Software, PHP Packet Sniffers, JavaScript Security Software, JavaScript Network Monitoring Software, JavaScript Information Analysis Software, JavaScript Packet Sniffers

Registered

2008-09-13