🗝️ The Voidweaver's Trail: Season 1 Investigation Reports for Echo Response. Uncovering hidden identities and securing the Nullform Key across the Cyber Realm via advanced forensics and cryptanalysis.

把 Wireshark/tshark 封装成结构化 MCP Tools：让智能体对 PCAP 做过滤、时间线、下钻、会话跟踪与导表，输出可控且安全可审计。 Turn Wireshark/tshark into structured MCP tools for PCAP troubleshooting: filtering, timelines, drill-down, session follow, and packet list exports with controlled output and safety boundaries.

Analysis and Visualization of network traffic from data centres based on trace.pcap file.

I do not know what I am doing yet! But it is my research!

AirSentinel is a Python-based cross-platform tool with a PyQt5 GUI for live Wi-Fi scanning and offline PCAP analysis. It detects network details, assigns risk levels, and exports results in JSON, Markdown, or PDF, making it valuable for cybersecurity research and testing.

A comprehensive web application for replaying network packet capture (PCAP) files using tcpreplay. Built with React frontend, Flask backend, and fully containerized with Docker.

C2 Framework Fingerprinter: identifies Cobalt Strike, Metasploit, Sliver, Havoc, Covenant, Brute Ratel from PCAP traffic using beacon analysis, URI patterns, JA3, and HTTP headers

Network Traffic Analysis using Wireshark to detect Redline Stealer C2 communications. Includes PCAP analysis, IOCs, and incident report.

A command-line companion for in-depth network traffic analysis, enabling security insights and statistical overview from PCAP files.

Sniffing network traffic with Python for real-time or PCAP analysis.

AEGIS-Omega is a high-performance, hybrid multi-layer Intrusion Detection System (IDS). It features a 4-layer detection strategy—Signature Analysis, Autoencoder Anomaly Detection, BiLSTM Deep Learning, and Ensemble Fusion—to identify attack types with 95% F1-score. Includes a FastAPI backend, React dashboard, and PCAP,Netflow analysis.

PCAP-based analysis of CryptoLocker and Word-Dropper malware samples using Wireshark and REMnux. Focus on DNS, HTTP, and TLS artifacts to identify adversary behavior and exfiltration attempts.

Machine learning-enhanced DNS tunneling detection system achieving 100% accuracy across multiple tunneling tools

GREP for PCAP files

Professional VoIP diagnostic tool - Analyzes PCAP files and detects one-way audio, NAT issues, call quality problems

A lightweight packet analyzer tool featuring a user-friendly GUI interface using Npcap and wxWidgets.

Demonstrating a man-in-the-middle (MITM) attack using ARP spoofing on three Kali Linux VMs in VirtualBox. The attacker (Kali 1) intercepts ping traffic between two victims (Kali 2 and Kali 3) with Ettercap, captures it with Wireshark, and analyzes the PCAP to verify redirection.

Localhost cybersecurity project simulating Port Scan & Brute Force attacks with automated PCAP detection and SOC-style reporting.

Files and Writeup-ish for CERT-SE CTF 2025

A high-performance cybersecurity system benchmarking SQLi/XSS detection (99.9% accuracy on CICIDS2017) and featuring a custom Docker-based stress testing pipeline for real-world validation.