Netcap

SIEM & Threat Detection

A framework for secure and scalable network traffic analysis - https://netcap.io

Track releases GitHub

Go Latest v0.9.0 · 1mo ago Security brief →

Features

Decodes 83 packet-layer protocols (Ethernet, IPv4/6, TCP, UDP, DNS, TLS, etc.) and 40+ stream protocols (TLS, SSH, HTTP/2, QUIC, SMB, FTP, …)
Built‑in React web UI with interactive visualizations (Sankey diagrams, treemaps, geo maps, host graphs)
Security analysis features: JA4 fingerprinting, YARA malware rules, Magika AI file type classification, credential harvesting and extraction
Outputs audit records in Protocol Buffers (default), CSV, JSON or directly to Elasticsearch
Enrichment options: DNS reverse lookup, GeoIP, MAC vendor resolution, optional Deep Packet Inspection via nDPI/libprotoident

Recent releases

View all 1 releases →

v0.9.0 Breaking risk 1mo

Notable features

Generic protobuf wire format stream decoder
Support for additional protocols
YARA and Magika support

View release on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Releases

View all →

Releases per week

Apr 9

Apr 16

Apr 23

Apr 30

May 7

May 14

May 21

May 28

Cadence 0.1 / wk

Last release 55d

Tracked 1

Security

Full profile →

Security score 5.3/10

OpenSSF 3.4/10

Open CVEs 0

SBOM Active maintainer

Community

GitHub stars 1,796

Forks 167

Open issues 4

Open PRs 5

Stars/wk velocity 0.0

HN peak 58

About

Stars

1,796

Forks

167

Languages

Go TypeScript Shell

View on GitHub Documentation

Install & Platforms

Install via

binary go

Platforms

linux macos windows

Similar tools

wazuh

About

Stars

1,796

Forks

167

Languages

Go TypeScript Shell

View on GitHub Documentation

Install & Platforms

Install via

binary go

Platforms

linux macos windows

Similar tools

wazuh

Beta — feedback welcome: [email protected]