tobias
e62a14dafc
Generate interlinked wiki from master inventory: 397 tool pages, 15 workflow pages, 27 recipe pages, 33 category pages, plus index. All pages use [[wiki-links]] for cross-navigation between tools, workflows, recipes, and categories (1782 links total). Install zk for interactive browsing with fzf search, tag filtering, and backlink discovery. Add 'fhelp wiki' command and Makefile target. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
26 lines
1.2 KiB
Markdown
26 lines
1.2 KiB
Markdown
# tcpflow
|
|
> Extract and reassemble TCP streams from PCAP files into individual files
|
|
|
|
**Category:** [[categories/explore-network-interactions-monitoring|Explore Network Interactions > Monitoring]] | **Tier:** Rich (FOR610)
|
|
**Docs:** [https://docs.remnux.org/discover-the-tools/explore+network+interactions/monitoring](https://docs.remnux.org/discover-the-tools/explore+network+interactions/monitoring)
|
|
|
|
## Usage
|
|
```bash
|
|
tcpflow -r <capture.pcap> -o output/
|
|
```
|
|
|
|
## Recipes
|
|
- [[recipes/pcap-file-carving|Extract Files from Network Capture]]
|
|
|
|
## Workflows
|
|
- [[workflows/network-interception-workflow|Network Traffic Interception]] — Step 6: Traffic Analysis
|
|
|
|
## Related Tools
|
|
- [[tools/burp-suite-community-edition|Burp Suite Community Edition]] — Investigate website interactions using this web proxy.
|
|
- [[tools/cs-parse-traffic|cs-parse-traffic.py]] — Decrypt and parse Cobalt Strike beacon network traffic using
|
|
- [[tools/mitmproxy|mitmproxy]] — Interactive HTTPS proxy for intercepting, inspecting, and mo
|
|
- [[tools/network-miner-free-edition|Network Miner Free Edition]] — Examine network traffic and carve PCAP capture files.
|
|
- [[tools/ngrep|ngrep]] — Search network traffic for patterns — like grep for packets
|
|
|
|
#network #tcp #stream-extraction
|