Packethunt is a Go program intended to help cybersecurity professionals easily research network traffic. It can either query individual IP addresses against the AlienVault OTX, or by parsing PCAP files and extracting IP addresses. RFC 1918 private addresses are removed and duplicate public IPs are removed.
Download it here: https://github.com/antoniojaguilar/packethunt
At a minimum the program will print out the geo-location of the IPs. If there is any threat intelligence available, this is printed out as well. In an update on 4/2/2025 I added the ability to print out to a text file as well.
https://github.com/antoniojaguilar/packethunt
Packethunt is still a work in progress. I plan to add a few more features in the future. Stay tuned.
