pyScanXtract.py is a script, written in Python that enables to analyse a pcap file and to produce statistics about potential portscans. Here is a list of available statistics:

• General information: pcap md5sum, number of packets, capture duration, ...
• Discovered hosts: list of identified hosts with mac addr. and vendors
• Scan types: List of detected scan types (TCP SYN, CONNECT, XMAS, UDP, ...)
• Hosts/targets: List of flows between attackers and targets
• IP options (utilisation of fragmentation)
• TCP and UDP ports status (open, closed, filtered, unfiltered)
• Detailed frames: show
• Distributions by frame/time of some parameters (sport, IP length, IPID, TTL, dport, seq, ack, ...)