PCAP Sentry

by industrial-davev2026.2.17.2

Last updated Jun 8, 2026

Learn Malware Network Traffic Analysis - Beginner-friendly educational tool

Install with winget

$ winget install --id industrial-dave.PCAP-Sentry --exact --version 2026.2.17.2

Run in Command Prompt, PowerShell, or Windows Terminal. Prompts for any agreements.

Silent install command for PCAP Sentry

PCAP Sentry uses EXE (Inno Setup). The silent install switches are /VERYSILENT /SUPPRESSMSGBOXES /NORESTART.

One-line silent install (x64, machine scope)

PCAP_Sentry_Setup.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART

See the full silent install reference for PCAP Sentry →

Built by Pckgr

For Intune admins

Stop chasing app updates. Pckgr patches them for you.

Automated application patching for Microsoft Intune. Pckgr keeps a curated library of 1,000+ apps continuously up-to-date in your tenant via Microsoft Graph - no manual repackaging, no chasing vendor sites.

Start free 30-day trial

No credit card required.

About

PCAP Sentry is a beginner-friendly educational tool for learning to identify malware network traffic patterns. It analyzes network packet captures (.pcap / .pcapng) and teaches you how to recognize suspicious activity with clear explanations and hands-on practice.

Features:

- Beginner-focused explanations for understanding suspicious network traffic

- Risk scoring (0-100) to learn which patterns indicate malicious behavior

- Behavioral detection for beaconing, DNS tunneling, port scanning, data exfiltration

- Real-world threat intelligence integration (OTX, URLhaus, AbuseIPDB)

- AI-powered guidance with local LLM chat support

- Credential extraction learning from unencrypted protocols

- C2 pattern detection and Wireshark filter generation

- Trainable knowledge base for building malware signature libraries

- Works offline with local models and threat databases

Installers · v2026.2.17.2

Architecture	Type	Scope	Install	Download
x64	EXE Inno Setup	machine		Direct

Copy a command tailored to that specific architecture, type, and scope - useful when winget would otherwise pick a different default.

Security

No known CVEs for PCAP Sentry.

Coverage is best-effort and depends on a winget package mapping to an NVD CPE entry. Absence here is not a guarantee of safety.

Related apps

Tesseract-OCR - open source OCR engineTesseract-OCR community
tesseract-ocr.tesseractv5.5.0.20241111
Tesseract Open Source OCR Engine
Proton VPNProton AG
Proton.ProtonVPNv4.4.1
High-speed Swiss VPN that safeguards your privacy.
Sera AntivirusYash12007
Yash12007.SeraAntivirusv3.0.0
Minimal, calm antivirus with real-time safety score and built-in system tools.
Nessus AgentTenable, Inc.
Tenable.NessusAgentv11.2.0.20301
Nessus Agents give you visibility into additional IT assets - even endpoints, and other remote assets that intermittently connect to the internet.
ExpressVPNExpressVPN
ExpressVPN.ExpressVPNv12.104.0.128
High-Speed, Secure & Anonymous VPN Service.
Securepoint SSL VPNSecurepoint GmbH
SecurepointGmbH.SecurepointSSLVPNv2.0.47
SSLVPN Client for Securepoint UTM

More from industrial-dave or browse pcap, network-analysis, malware-analysis.

Frequently asked questions

How do I install PCAP Sentry on Windows?

Open Windows Terminal, PowerShell, or Command Prompt and run: winget install --id industrial-dave.PCAP-Sentry --exact --version 2026.2.17.2. winget downloads the installer from industrial-dave and runs it. Requires Windows 10 (1809+) or Windows 11.

How do I install PCAP Sentry silently for unattended deployment?

Add --silent and accept the agreements upfront: winget install --id industrial-dave.PCAP-Sentry --exact 2026.2.17.2 --silent --accept-package-agreements --accept-source-agreements. This is the variant Intune, Configuration Manager, and other deployment tools should use.

What are the silent install switches for PCAP Sentry?

PCAP Sentry uses EXE (Inno Setup). Run the downloaded installer with: PCAP_Sentry_Setup.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART. The silent switches are /VERYSILENT /SUPPRESSMSGBOXES /NORESTART.

How do I uninstall PCAP Sentry via winget?

Run: winget uninstall --id industrial-dave.PCAP-Sentry --exact. Add --silent for unattended uninstalls. winget will use the registered uninstaller from PCAP Sentry's Apps & Features entry.

Is PCAP Sentry free?

PCAP Sentry is distributed under GPL-3.0. Refer to the publisher (https://github.com/industrial-dave/PCAP-Sentry) for the full license terms - Wingetly itself does not charge for installation.

Does PCAP Sentry work on Windows 10?

Yes, as long as your Windows 10 build supports winget (1809 or newer). winget ships with App Installer on Windows 10/11 and pulls PCAP Sentry directly from the publisher.

How do I keep PCAP Sentry up to date?

Run winget upgrade --id industrial-dave.PCAP-Sentry --exact, or winget upgrade --all to update everything winget tracks. We index 1 version of PCAP Sentry from microsoft/winget-pkgs.