May 26, 2018

Basic SQL-frontend to PCAP-files

PacketQ is a command line tool to run SQL queries directly on PCAP files, the results can be outputted as JSON default, formatted/compact CSV and XML. It also contain a very simplistic web-server in order to inspect PCAP files remotely. PacketQ was known as DNS2db but renamed in 2011.

