Security Onion can be a Linux distribution specially designed for intrusion detection, network security monitoring, and log management. Arkime - is packet seize analysis ninja style. driven by an elastic lookup backend this will make looking through pcaps quick. Has fantastic assistance for protocol decoding and display of captured data. With a se