Home Software PCAP_tools: A Plugin for ProcDOT

PCAP_tools: A Plugin for ProcDOT

0
0
1,876

ProcDOT is a malware analysis tool created by Christian Wojner. The tool is designed to correlate Procmon logs and PCAP data. ProcDOT uses this data and lets you visualize the information in a graph loaded with useful information.

Brian Maloney has developed a plugin for ProcDot called PCAP_tools. This plugin does the following things:

  1. It allows an analyst to extract files from the entire pcap
  2. It allows an analyst to extract files from a specific TCP stream
  3. It gives ProcDOT the ability to follow TCP streams without having to use another tool like Wireshark.

Learn more about this plugin visiting Brian’s blog.

Load More Related Articles
  • Malcom: Malware Communication Analyzer

    Malcom is a tool designed to analyze a system’s network communication using graphica…
  • PasteHunter

    PasteHunter is a Python3 application that is designed to query a collection of sites that …
  • Open Forensic Images with Forensic7z

    Forensic7z is a plugin for 7-Zip archiver that can be used for opening and browsing disk i…
Load More In Software

Leave a Reply

Your email address will not be published. Required fields are marked *