Xplico is a network forensics analysis tool (NFAT), which is a software that reconstructs the contents of acquisitions performed with a packet sniffer (e.g. Wireshark, tcpdump, Netsniff-ng).
Xplico is free and open-source software, subject to the requirements of the GNU General Public License (GPL), version 2.
Among the protocols that Xplico identifies and reconstructs there are VoIP, MSN, IRC, HTTP, IMAP, POP, SMTP, and FTP.
The pcap files can be uploaded in many ways, directly from the Xplico Web user interface, with a SFTP or with a transmission channel called PCAP-over-IP.
The input module named rltm acquires the data directly from the network interface, vice versa the input module named pcap acquires data form pcap files or directory.