ParserCap is a visual tool for information security specialists, system administrators, students and everyone who needs to analyze network traffic in PCAP format (libpcap — ETHERNET and IEEE 802.11).
It is also possible to set filters for identifier search TCP headers (Documents, Multimedia, Files, Logins, Passwords etc.). If necessary, it is possible to view detailed statistics on every MAC address, including COOKIES, USER-AGENTS, HTTP GET/POST and a lot more.
Features:
- Reading *.pcap from airodump-ng, kismet and other utilities;
Showing MAC address extended information:
- HTTP sessions
- Cookies
- USER-AGENTS
- DNQ Query
- SSL Handshake (server names)
- MDNS and LLNMR
Other information
- Analyzing DNS Query for all MAC addresses in PCAP traffic
- IPv4 an IPv6 support
- IEEE 802.11 support
Additional features:
- Creating keyword search filters in TCP headers (Archives, Documents, Files, Passwords, Logins, etc.)
- Viewing all found reserved word for a selected MAC address.
Utilities:
- MAC Vendor Search
- URL converter
- JSON converter
- UNIX Time converter
Supports protocols:
- ARP
- DNS (v. IP4)
- LLNMR (v. IP6)
- MDNS (v. IP6)
- DHCP (v. IP4)
- HTTP Headers (v. IP4)
FREEWARE - Current vesrion (15.07.2014): 0.4.4
Links project: http://parsercap.net/