What file formats are supported?

The tool accepts standard .pcap files and basic .pcapng files containing Ethernet packets.

Can this tool decrypt TLS or HTTPS traffic?

No, the analyzer focuses on surface-level packet headers and basic unencrypted payloads like HTTP and DNS. It does not perform TLS decryption or deep application payload inspection.

Does it support IPv6 traffic?

Currently, the tool is optimized for Ethernet frames carrying IPv4 traffic. IPv6, ARP, and ICMP packets are not fully decoded.

How does the timeline feature work?

The timeline groups packets by the second, allowing you to easily spot sudden bursts of network traffic or identify periods of inactivity.

Can I export the filtered packet data?

Yes, you can export the filtered packet summaries in either JSON or CSV format for use in other reporting or analysis tools.

Elysia Tools

Navigation

Network

Network Packet Analyzer

Parse pcap and basic pcapng captures, surface protocol hierarchy and session statistics, and export filtered packet summaries

Details

What this tool helps you do

Upload a pcap or basic pcapng capture to inspect packet-level activity without leaving the browser workflow. The tool extracts packet summaries, protocol counts, top IPs, top ports, simple sessions, and a coarse packet timeline.

What the tool can currently detect:

Ethernet frames carrying IPv4
TCP and UDP transport packets
Simple HTTP request/response detection from TCP payload prefixes
Basic DNS detection on port 53 with question-name extraction
Session grouping by protocol + source/destination IP and port tuple

How to fill the fields:

PCAP File: upload a .pcap file, or a basic .pcapng file with Ethernet packets
Protocol Filter: narrow the report to all packets, or only TCP, UDP, HTTP, or DNS summaries
IP Filter: optionally focus on traffic involving one IPv4 address
Export Format: choose JSON or CSV for the filtered packet summaries shown in the report

How to read the report:

Packets is the number of packets after filtering
Protocols is the number of distinct detected protocol labels in the filtered view
Sessions counts grouped flows based on protocol and endpoint tuple
Top IPs and Top ports show the busiest addresses and ports
Timeline groups packets by second so bursts are easy to spot
Export preview shows the same filtered records in JSON or CSV form for copy/export workflows

Current scope and limits:

Focuses on Ethernet + IPv4 captures
Does not fully decode TLS, IPv6, ARP, ICMP, reassembly, or deep application payloads
pcapng support is practical but intentionally basic
This is meant for fast triage and summary analysis rather than a Wireshark replacement

Execution

Run this tool

Fill in the form, run the tool, and review the result in one place.

Result

Ready for a run

Run the tool to preview files, text, structured data, or streamed output here.

Samples

Network Packet Analyzer

What this tool helps you do

Run this tool

Prepared example runs

Inputs

Result

Examples that match this tool

Continue with connected tools and hubs

Prepared example runs

Inputs

Result

Learn when to use this tool, what it supports, and how real users apply it.

Key facts

Overview

When to use

How it works

Use cases

Examples

1. Extracting DNS Queries from a Capture

2. Isolating Traffic for a Specific Endpoint

FAQ

PCAPNG Capture Samples

PCAP Capture Samples

Android Image Processing Java Samples

Android Image Processing Kotlin Samples

VP8 Image Analyzer

Image Metadata Extractor

Accessibility Checker

Color Vision Accessibility Checker

Network Address Conversion and Traffic Inspection Tools

Network Triage, Packet Inspection, and Endpoint Debugging Tools