Nexus SecOps -- Packet Parser

Input

Format Paste packet data (export from Wireshark: File → Export Packet Dissections → As Plain Text/CSV)

Load: port scan sample Load: C2 beaconing sample Load: DNS tunneling sample Load: benign traffic

Filters

Protocol

Source IP contains

Destination IP contains

Destination port

Info contains

Time window (seconds, format start-end)

Paste packet text and click Parse and Analyze.

Heuristic analyzer — patterns flagged are signals, not verdicts. Real traffic analysis needs full pcap (binary) inspection in Wireshark/tshark/Zeek. This tool serves quick triage and learning.

Sample data uses RFC 5737 / RFC 1918 synthetic IPs. *.example.com hosts. No real traffic.