PK
"QA#2 _rels/.rels ( PK "Qp 8 bruteshark.nuspec ( WmnO w(yCk
MKk&"Xt͙"٫Iw)%Γ
yEW=:mo'ϟ|7UoX^-Zo_V\*:ƙO2SZ_???O6Ws< %{+u>Ƴ[){?L'ô{^Gd]}UWƺsnKS
el*`~o*h{rc4.
q-FCKW
MLYW).2b?h 5
IY+M\8ɮ˂D5;
5(zXX*CKOҏ $DWV%Z4XT y1ү=F\[WQY6J
qͅTnB%1
AR vR$&$` gQTu_2ʄ9C֔9΅ܚƒ!\-6MB'K9@JE i_74|["Bӥ)~n}+'F-ʣo_?\Qn_'-%w:#Pq}JmwF*3 *nt)f\ C^tw=M%9|c-(ׄF5?3Ƌ̮4y;~v7^%;&Mk4XZZU/*p*뗭4dۃ>"˱|)mk8D8;!~Ob>1I:FtUQ{>*y0"qyvO,dzL~o*Vܓݼ|vkSO=7m=ZHnoGimxĿVu;vM
Fougϊ=eu}4v˓B{g`txqF3i2kVҊ*p650{NiPDGrҖFNHnmlN\Gm`dQ1wv˻>J_>.7LG[+|7ڿ.XjFs36;w7{ԙ?5T }4?ᰟWD7Ņ̹;vש
곐?qYR)Sgd]Hr8v,g6_"x{w]8PK "Q97 tools/chocolateyInstall.ps1 ( ]MN0r,*uE!,ؠJGdDq`;
q2+V
7ߟ_;ހj,PU|orx+
۳86o8`p3Y4%7C;Ti⬲g5+Bv-l!*ܔU$=h
W)>?ܢݞX.7NP"ԦkX|N4/昆iHs!4GIX0`yH#|9/ %E
N`}a]tѸ";f4u7GPK
"Q.` ` Q package/services/metadata/core-properties/9f440c56b8bf4252a290e5f5b9625626.psmdcp ( Oded Shimon![](https://raw.githubusercontent.com/odedshimon/BruteShark/master/readme_media/BruteSharkBanner.png)
BruteShark is a Network Forensic Analysis Tool (NFAT) that performs deep processing and inspection of network traffic (mainly PCAP files). It includes: password extracting, building a network map, reconstruct TCP sessions, extract hashes of encrypted passwords and even convert them to a Hashcat format in order to perform an offline Brute Force attack.
The main goal of the project is to provide solution to security researchers and network administrators with the task of network traffic analysis while they try to identify weaknesses that can be used by a potential attacker to gain access to critical points on the network.
Two BruteShark versions are available, A GUI based application (Windows) and a Command Line Interface tool (Windows and Linux).
The various projects in the solution can also be used independently as infrastructure for analyzing network traffic on Linux or Windows machines. For further details see the Architecture section.
The project was developed in my spare time to address two main passions of mine: software architecture and analyzing network data.
I love to get feedbacks from BruteShark users, your opinion is important to me!
Feel free to contact me on <contact.oded.shimon@gmail.com> or [create new issue](https://github.com/odedshimon/BruteShark/issues).
Please ⭐️[this repository](https://github.com/odedshimon/BruteShark) if this project helped you!
## What it can do
* Extracting and encoding usernames and passwords (HTTP, FTP, Telnet, IMAP, SMTP...)
* Extract authentication hashes and crack them using Hashcat (Kerberos, NTLM, CRAM-MD5, HTTP-Digest...)
* Build visual network diagram (Network nodes & users)
* Reconstruct all TCP Sessions
* File Carving
# Examples
##### Videos
[**How do i crack (by mistake!) Windows 10 user NTLM password**](https://youtu.be/AreguLxCCz4)
[**Run Brute Shark CLI on Ubuntu with Mono**](https://youtu.be/am1xU_kAxiI)
##### Hashes Extracting
![](https://raw.githubusercontent.com/odedshimon/BruteShark/master/readme_media/Hashes.PNG)
##### Building a Network Diagram
![](https://raw.githubusercontent.com/odedshimon/BruteShark/master/readme_media/NetworkMap.png)
##### File Carving
![](https://raw.githubusercontent.com/odedshimon/BruteShark/master/readme_media/FilesCarving.png)
##### Password Extracting
![](https://raw.githubusercontent.com/odedshimon/BruteShark/master/readme_media/Passwords.PNG)
##### Reconstruct all TCP Sessions
![](https://raw.githubusercontent.com/odedshimon/BruteShark/master/readme_media/TcpSessions.PNG)
##### Brute Shark CLI
![](https://raw.githubusercontent.com/odedshimon/BruteShark/master/readme_media/BruteSharkCli.PNG)
*Please Note:* This is an automatically updated package. If the package is outdated for more than two days, please let me know!bruteshark1.1.1network analysis tool deep processing package inspection traffic pcap password extracting map reconstruct tcp sessions hashes encrypted hashcat bruteforceBruteSharkchoco, Version=0.10.15.0, Culture=neutral, PublicKeyToken=79d02ea9cad655eb;Microsoft Windows NT 6.3.9600.0;.NET Framework 4PK
"QUd, [Content_Types].xml ( PK-
"QA#2 _rels/.relsPK- "Qp 8 4 bruteshark.nuspecPK- "Q97 tools/chocolateyInstall.ps1PK-
"Q.` ` Q
package/services/metadata/core-properties/9f440c56b8bf4252a290e5f5b9625626.psmdcpPK-
"QUd, [Content_Types].xmlPK