packetexaminer - PacketExaminer - Analyze PCAP files

Property Value
Distribution Fedora 29
Repository CERT Forensics Tools x86_64
Package filename packetexaminer-0.9-4.fc29.x86_64.rpm
Package name packetexaminer
Package version 0.9
Package release 4.fc29
Package architecture x86_64
Package type rpm
Category System Environment/Libraries
License GPL3
Maintainer -
Download size 9.58 MB
Installed size 10.25 MB
This is a harness to perform PCAP analysis that a security engineer may do during an incident response
or when looking at network security. I - Joe McManus - found myself using a collection of tools and techniques
again and again and thought it would be helpful to create a program that would do this for me. This hopefully
automates some routine functions you would do manually.


Package Version Architecture Repository
packetexaminer-0.9-4.fc29.i686.rpm 0.9 i686 CERT Forensics Tools
packetexaminer - - -


Name Value
/usr/bin/python3 -
python3 -
python3-pip -


Name Value
packetexaminer = 0.9-4.fc29
packetexaminer(x86-64) = 0.9-4.fc29


Type URL
Binary Package packetexaminer-0.9-4.fc29.x86_64.rpm
Source Package packetexaminer-0.9-4.fc29.src.rpm

Install Howto

  1. Download cert-forensics-tools-release-29 rpm:
  2. Install cert-forensics-tools-release-29 rpm:
    # rpm -Uvh cert-forensics-tools-release*rpm
  3. Install packetexaminer rpm package:
    # dnf --enablerepo=forensics install packetexaminer




2018-11-12 - Lawrence R. Rogers <> 0.9-4
* Release 0.9-4
Fixed CentOS/RHEL 7 pip3 install
2018-11-12 - Lawrence R. Rogers <> 0.9-3
* Release 0.9-3
Added scapy-http to the list of pip modules.
2018-11-10 - Lawrence R. Rogers <> 0.9-2
* Release 0.9-2
Added %post to install pip modules.
2018-11-09 - Lawrence R. Rogers <> 0.9-1
* Release 0.9-1
Initial release

See Also

Package Description
pasco-1.0-1.fc29.x86_64.rpm Reconstruct IE internet activity
perl-File-Mork-0.4-1.fc29.noarch.rpm Module to read Mozilla URL history files
perl-Mac-PropertyList-1.412-1.fc29.noarch.rpm Work with Mac plists at a low level
perl-Parse-Evtx-1.1.1-2.fc29.noarch.rpm Windows Event Log Parser library
perl-Parse-Evtx-tools-1.1.1-2.fc29.noarch.rpm Tools for parsing Windows Events, written in perl
perl-Parse-Win32Registry-1.0-1.fc29.noarch.rpm Parse Windows Registry Files
plaso-20190708-1.fc29.x86_64.rpm plaso - Python based back-end engine used by tools such as log2timeline for automatic creation of a super timelines
prism-1.2-6.fc29.x86_64.rpm Visualize flow data as a time-series broken down into several configurable bins
pstotext-1.9-2.1.fc29.x86_64.rpm PostScript to text converter
ptfinder-0.3.05-2.fc29.noarch.rpm Find processes and threads in a Windows memory dump
ptk-1.0.5-6.fc29.noarch.rpm An alternative advanced interface for the suite TSK (The SleuthKit)
pyparsing-doc-2.4.2-1.fc29.noarch.rpm Documentation for pyparsing
python-binplist-0.1.5-1.fc29.x86_64.rpm Python libraries for binplist
python-dpapick-0.3-0.noarch.rpm DPAPI decryption toolkit
python-haystack-0.42-1.fc29.noarch.rpm Search C Structures in a process' memory