silk

Collection of traffic analysis tools for network flow analysis

brewmacoslinux

Try with needOr install directly

About

Collection of traffic analysis tools

rwcutrwfilterrwsortrwstatsrwcountrwuniqrwcat

Filter and display specific fields from SiLK flow records$ rwcut --fields=sip,dip,sport,dport,protocol input.silk

Aggregate and count traffic by source IP address$ rwstats --fields=sip --count input.silk

Filter flows matching specific criteria (port 80, TCP protocol)$ rwfilter --protocol=tcp --dport=80 input.silk --pass=stdout | rwcount