Packet Café is a platform built for easy-to-use automated network traffic analysis. It is built to be modular and allow for a pipeline of tools that are triggered by different inputs and outputs. Currently the tools supplied are defined here.
This service accepts PCAP files and then processes them against the pipeline of tools providing automated analysis that gets returned in JSON format. That can then be consumed via the API directly and put into other systems such as SIEMs, searched and filtered through the included JSON viewer, or viewed through the included visualizations of the Packet Café frontend.
The hope and motivation behind the Packet Café platform is to enable lowering the barrier to understanding what is actually in a network traffic capture file (PCAP) and provide insight without having to be an expert in networking.
Packet Café is open source and welcomes contributions to the project.