pcapfex - Packet Capture Forensic Evidence eXtractor.

pcapfex – Packet Capture Forensic Evidence eXtractor.

pcapfex : Packet CAPture Forensic Evidence eXtractor is a tool that finds and extracts files from packet capture files. The power of pcapfex lies in it’s ease of use. You only provide it a pcap-file and are rewarded a structured export of all files found in it. pcacpfex allows data extraction even if non-standard protocols were used. It’s easy to understand plugin-system offers python developers a quick way to add more file-types, encodings or even complex protocols.

'Packet CAPture Forensic Evidence eXtractor' is a tool that finds and extracts files from packet capture files.

‘Packet CAPture Forensic Evidence eXtractor’ is a tool that finds and extracts files from packet capture files.

Requirements
pcapfex was developed and tested for Linux environments only. Due to missing optimizations and tests, there is no guarantee for it to work under Windows (though it should work).
pcapfex depends on Python 2.7 and the dpkt.

Usage:

Source: https://github.com/vikwin