🗂️ Navigation
📁 Network Security
📋 Network Forensics
🔧 Xplico

Xplico

Open Source Network Forensic Analysis Tool (NFAT).

Visit Website →

Overview

The goal of Xplico is to extract from an internet traffic capture the applications data contained. For example, from a pcap file Xplico extracts each email (POP, IMAP, and SMTP protocols), all HTTP contents, each VoIP call (SIP), FTP, TFTP, and so on. Xplico is not a network protocol analyzer. Xplico is an open source Network Forensic Analysis Tool (NFAT).

✨ Key Features

  • Extraction of application data from network traffic
  • Support for various protocols (HTTP, SIP, IMAP, POP, SMTP, etc.)
  • Port Independent Protocol Identification (PIPI)
  • Web-based user interface
  • Multi-user support
  • Output to SQLite or MySQL database

🎯 Key Differentiators

  • Focus on application data reconstruction
  • Web-based interface for analysis
  • Port Independent Protocol Identification

Unique Value: Provides a user-friendly web interface for reconstructing and analyzing application-layer data from network captures.

🎯 Use Cases (3)

Network forensics Incident response Lawful interception

✅ Best For

  • Reconstructing web pages from network traffic
  • Extracting emails and attachments from PCAP files
  • Analyzing VoIP calls

💡 Check With Vendor

Verify these considerations match your specific requirements:

  • In-depth protocol analysis (better suited for Wireshark)
  • Real-time intrusion detection

🏆 Alternatives

NetworkMiner Wireshark CapLoader

Compared to tools like Wireshark that focus on individual packets, Xplico is designed to reassemble and present the complete application data, such as web pages and emails.

💻 Platforms

Web Desktop (Linux)

✅ Offline Mode Available

💰 Pricing

Contact for pricing
Free Tier Available

Free tier: Full functionality, no limits.

Visit Xplico Website →

🔄 Similar Tools in Network Forensics

Wireshark

A free and open-source packet analyzer used for network troubleshooting, analysis, and software and ...

Contact

NetworkMiner

An open-source tool for network forensics and traffic analysis that can extract files, emails, and o...

Contact

Snort

An open-source network intrusion prevention system (NIPS) and network intrusion detection system (NI...

Contact

tcpdump

A free and open-source command-line utility for capturing and analyzing network traffic....

Contact

Splunk

A data platform that provides security information and event management (SIEM), observability, and I...

Contact

OpenText EnCase Forensic

A court-proven solution for digital forensics that enables examiners to acquire data from a wide var...

Contact