A cross-platform utility for uploading PCAP files to Online Hash Crack (OHC).
RPU was created to give the Flipper Zero WiFi Dev Board and Marauder Community an easy way to upload all those wonderful PCAP files to OHC - (OnlineHashCrack.com) and get results in Email on-the-go. RPU was written in BATCH (Windows Systems) and BASH (Most Unix Based Systems) to provide as wide of compatibility as possible.
This version includes three platform-specific scripts that maintain consistent behavior and output across different operating systems:
upload-unix.sh
- For Linux and other Unix-based systemsupload-macos.sh
- Specifically optimized for macOSupload-win.cmd
- For Windows 10 and newer
- Email validation across all platforms
- Automatic creation of a "sent" directory for processed files
- Persistent email storage (saves your email in email.txt)
- Compatible path handling for each operating system
- Consistent output messages across all platforms
- Upload history logging (in upload_history.log)
- Recursive directory scanning
- Optional PCAP file verification
- Progress indicators for uploads
- Command-line options for scripting
Packet capture (PCAP) is a networking practice involving the interception of data packets travelling over a network. Once the packets are captured, they can be stored by IT teams for further analysis.
Packet capturing helps to analyze networks, identify network performance issues and manage network traffic. It allows IT teams to detect intrusion attempts, security issues, network misuse, packet loss, and network congestion. It enables network managers to capture data packets directly from the computer network. The process is known as packet sniffing.
IT teams prefer using packet monitoring software to perform crucial tasks, such as:
- Monitoring WAN Traffic
- Tracking Network Usage
- Isolating Compromised Systems
- Testing Security of WAN's
- Detecting Suspicious Traffic
- Identify Rogue Attacks
All scripts now support the following command-line options:
-h, --help Show this help message
-r, --recursive Search for PCAP files in subdirectories
-v, --verify Verify files are valid PCAP files before upload
-n, --no-verify Skip PCAP file verification (default behavior)
-s, --silent Hide progress indicators
-e EMAIL Specify email address for results
Example: ./upload-unix.sh -r -e your@email.com
- Place your .pcap files in the same directory as the script
- Double-click
upload-win.cmd
to run or use command-line options - Enter your email when prompted (or pre-configure in the script)
- All PCAP files will be uploaded to OHC and moved to the "sent" folder
- Place your .pcap files in the same directory as the script
- Open Terminal and navigate to the script directory
- Make the script executable with:
chmod +x upload-macos.sh
- Run with:
./upload-macos.sh
or use command-line options - Enter your email when prompted (or pre-configure in the script)
- All PCAP files will be uploaded to OHC and moved to the "sent" folder
- Place your .pcap files in the same directory as the script
- Open Terminal and navigate to the script directory
- Make the script executable with:
chmod +x upload-unix.sh
- Run with:
./upload-unix.sh
or use command-line options - Enter your email when prompted (or pre-configure in the script)
- All PCAP files will be uploaded to OHC and moved to the "sent" folder
To avoid entering your email each time, you can either:
- Edit the script directly and set the EMAIL variable at the top
- Create a file named
email.txt
in the same directory with your email address - Use the
-e
command-line option when running the script
To reset the EMAIL used to receive results, just delete "email.txt" in the directory where you have the script running. The script will prompt you for your EMAIL next time you run it.
You can customize the behavior by setting these options in the script:
- RECURSIVE_MODE - Set to true to scan subdirectories (default: false)
- VERIFY_PCAP - Set to true to verify PCAP files before upload (default: false)
- SHOW_PROGRESS - Set to true to show curl progress meter (default: true)
- Windows: curl.exe (included in Windows 10 1803 and later)
- macOS/Linux: curl (usually pre-installed)
- Some AV's (Anti-Viruses/Firewalls) may block scripts from using CURL correctly on Windows
- In Version 2.1, the issue with spaces in usernames and paths has been fixed
Created by REDD (InfoSecREDD) - Creator/Developer