Xplico (original) (raw)
Xplico is a network forensics analysis tool (NFAT), which is a software that reconstructs the contents of acquisitions performed with a packet sniffer (e.g. Wireshark, tcpdump, Netsniff-ng). Unlike the protocol analyzer, whose main characteristic is not the reconstruction of the data carried by the protocols, Xplico was born expressly with the aim to reconstruct the protocol's application data and it is able to recognize the protocols with a technique named Port Independent Protocol Identification (PIPI). The name "xplico" refers to the Latin verb explico and its significance.
| Property | Value |
|---|---|
| dbo:abstract | Xplico is a network forensics analysis tool (NFAT), which is a software that reconstructs the contents of acquisitions performed with a packet sniffer (e.g. Wireshark, tcpdump, Netsniff-ng). Unlike the protocol analyzer, whose main characteristic is not the reconstruction of the data carried by the protocols, Xplico was born expressly with the aim to reconstruct the protocol's application data and it is able to recognize the protocols with a technique named Port Independent Protocol Identification (PIPI). The name "xplico" refers to the Latin verb explico and its significance. Xplico is free and open-source software, subject to the requirements of the GNU General Public License (GPL), version 2. (en) Xplico è un (NFAT), ovvero un software che ricostruisce i contenuti dalle acquisizioni eseguite con packet sniffer (ad esempio Wireshark o tcpdump). Diversamente dagli , la cui principale caratteristica non è la ricostruzione dei dati trasportati dai protocolli, Xplico nasce espressamente con lo scopo di ricostruire i dati applicativi dai protocolli che li trasportano ed è in grado di riconoscere i protocolli indipendentemente dalla porta che utilizzano, questo per mezzo di tecniche di Port Independent Protocol Identification. Per chiarire meglio cosa Xplico esegue prendiamo ad esempio il protocollo HTTP, dai pacchetti grezzi (ethernet, o PPP) acquisiti da un packet sniffer Xplico estrae e ricostruisce tutte le pagine ed i contenuti Web, analogamente considerando i protocolli POP, SMTP e IMAP Xplico ricostruisce le e-mail scambiate. Questo software è rilasciato sotto una licenza Open Source ed è compatibile solo con Linux. Fra i protocolli che Xplico individua e di cui ricostruisce i dati applicativi ci sono MSN, IRC, HTTP, SIP, IMAP, POP, SMTP e FTP, per una lista completa ed aggiornata si rimanda al sito ufficiale. Xplico nella versione chiamata pcap2wav è in grado di decodificare le chiamate VoIP basate sul protocollo RTP (SIP, , MGCP, ) e supporta la decodifica dei codec audio G711ulaw, G711alaw, G722, , , e MSRTA. (it) |
| dbo:genre | dbr:Network_Forensics |
| dbo:latestReleaseDate | 2019-05-02 (xsd:date) |
| dbo:latestReleaseVersion | 1.2.2 |
| dbo:license | dbr:GNU_General_Public_License |
| dbo:operatingSystem | dbr:Linux |
| dbo:programmingLanguage | dbr:Python_(programming_language) dbr:C_(programming_language) dbr:PHP |
| dbo:wikiPageExternalLink | http://demo.xplico.org/ http://pcap2wav.xplico.org/ http://www.xplico.org/ |
| dbo:wikiPageID | 36160276 (xsd:integer) |
| dbo:wikiPageLength | 8683 (xsd:nonNegativeInteger) |
| dbo:wikiPageRevisionID | 1087622426 (xsd:integer) |
| dbo:wikiPageWikiLink | dbr:Python_(programming_language) dbc:Unix_network-related_software dbr:Pcap dbr:VoIP dbr:G711 dbr:G723 dbr:G726 dbr:SMTP dbr:SSH_File_Transfer_Protocol dbr:Free_and_open-source_software dbr:G729 dbr:GNU_General_Public_License dbr:Application_programming_interface dbc:Free_network_management_software dbr:Linux dbr:MSN dbr:Snoop_(software) dbr:Comparison_of_packet_analyzers dbr:Penetration_testing dbr:Post_Office_Protocol dbr:BackBox dbr:BackTrack dbc:Free_software_programmed_in_C dbr:CERT_Coordination_Center dbr:C_(programming_language) dbr:Wireshark dbr:Etherape dbr:Lawful_interception dbc:Network_analyzers dbr:FTP dbr:PHP dbr:Digital_forensics dbr:HTTP dbc:Linux-only_free_software dbr:Tcpdump dbr:Kali_Linux dbr:Latin dbr:Dsniff dbr:Point-to-Point_Protocol dbr:Solaris_(operating_system) dbr:H323 dbr:IMAP dbr:IRC dbr:Netsniff-ng dbr:Ngrep dbr:Real-time_Transport_Protocol dbr:Session_Initiation_Protocol dbr:Media_Gateway_Control_Protocol dbr:Skinny_Client_Control_Protocol dbr:Network_forensics dbr:Ethernet dbr:Tcptrace dbr:Packet_analyzer dbr:Packet_sniffer dbr:Network_Forensics dbr:Command_line dbr:DEFT dbr:G722 dbr:Matriux dbr:Security_Onion dbr:Wiktionary:explico |
| dbp:developer | Gianluca Costa & Andrea de Franceschi (en) |
| dbp:genre | dbr:Network_Forensics |
| dbp:latestReleaseDate | 2019-05-02 (xsd:date) |
| dbp:latestReleaseVersion | 1.200000 (xsd:double) |
| dbp:license | dbr:GNU_General_Public_License |
| dbp:name | Xplico (en) |
| dbp:operatingSystem | dbr:Linux |
| dbp:programmingLanguage | dbr:Python_(programming_language) dbr:C_(programming_language) dbr:PHP |
| dbp:website | http://www.xplico.org/ |
| dbp:wikiPageUsesTemplate | dbt:Infobox_software dbt:Reflist dbt:Short_description dbt:Release_date_and_age |
| dbp:wordnet_type | http://www.w3.org/2006/03/wn/wn20/instances/synset-software-noun-1 |
| dcterms:subject | dbc:Unix_network-related_software dbc:Free_network_management_software dbc:Free_software_programmed_in_C dbc:Network_analyzers dbc:Linux-only_free_software |
| gold:hypernym | dbr:Tool |
| rdf:type | owl:Thing dbo:Software schema:CreativeWork dbo:Work wikidata:Q386724 wikidata:Q7397 yago:Abstraction100002137 yago:Code106355894 yago:CodingSystem106353757 yago:Communication100033020 yago:Writing106359877 yago:WrittenCommunication106349220 yago:Software106566077 |
| rdfs:comment | Xplico is a network forensics analysis tool (NFAT), which is a software that reconstructs the contents of acquisitions performed with a packet sniffer (e.g. Wireshark, tcpdump, Netsniff-ng). Unlike the protocol analyzer, whose main characteristic is not the reconstruction of the data carried by the protocols, Xplico was born expressly with the aim to reconstruct the protocol's application data and it is able to recognize the protocols with a technique named Port Independent Protocol Identification (PIPI). The name "xplico" refers to the Latin verb explico and its significance. (en) Xplico è un (NFAT), ovvero un software che ricostruisce i contenuti dalle acquisizioni eseguite con packet sniffer (ad esempio Wireshark o tcpdump). Diversamente dagli , la cui principale caratteristica non è la ricostruzione dei dati trasportati dai protocolli, Xplico nasce espressamente con lo scopo di ricostruire i dati applicativi dai protocolli che li trasportano ed è in grado di riconoscere i protocolli indipendentemente dalla porta che utilizzano, questo per mezzo di tecniche di Port Independent Protocol Identification. (it) |
| rdfs:label | Xplico (it) Xplico (en) |
| owl:sameAs | freebase:Xplico wikidata:Xplico dbpedia-it:Xplico https://global.dbpedia.org/id/3iowx |
| prov:wasDerivedFrom | wikipedia-en:Xplico?oldid=1087622426&ns=0 |
| foaf:homepage | http://www.xplico.org/ |
| foaf:isPrimaryTopicOf | wikipedia-en:Xplico |
| foaf:name | Xplico (en) |
| is dbo:wikiPageWikiLink of | dbr:Pcap dbr:Comparison_of_packet_analyzers dbr:Netsniff-ng dbr:Ngrep dbr:Packet_analyzer |
| is foaf:primaryTopic of | wikipedia-en:Xplico |