# ngrep
> Search network traffic for patterns — like grep for packets

**Category:** [[categories/explore-network-interactions-monitoring|Explore Network Interactions > Monitoring]] | **Tier:** Rich (FOR610)
**Docs:** [https://docs.remnux.org/discover-the-tools/explore+network+interactions/monitoring](https://docs.remnux.org/discover-the-tools/explore+network+interactions/monitoring)

## Usage
```bash
ngrep -I <capture.pcap> 'password'
ngrep -d eth0 'GET|POST' 'tcp port 80'
```

## Workflows
- [[workflows/network-interception-workflow|Network Traffic Interception]] — Step 6: Traffic Analysis

## Related Tools
- [[tools/burp-suite-community-edition|Burp Suite Community Edition]] — Investigate website interactions using this web proxy.
- [[tools/cs-parse-traffic|cs-parse-traffic.py]] — Decrypt and parse Cobalt Strike beacon network traffic using
- [[tools/mitmproxy|mitmproxy]] — Interactive HTTPS proxy for intercepting, inspecting, and mo
- [[tools/network-miner-free-edition|Network Miner Free Edition]] — Examine network traffic and carve PCAP capture files.
- [[tools/polarproxy|polarproxy]] — Transparent TLS proxy that decrypts traffic and saves it as 

#network #search #pattern-matching