ngrep strives to provide most of GNU grep’s common features, applying them to the network layer. ngrep is a pcap-aware tool.
Read more
Category: Security
tcpdump – command-line packet analyzer
tcpdump is a common computer network debugging tool that runs under the command line. Intercept and display TCP/IP and other packets.
Read more
sniffit – CORBA based sniffer system
sniffIt is a Distributed Sniffer System. Capture network traffic from an unique machine using a graphical client application.
Read more
EtherApe – graphical network monitor
EtherApe is a network traffic browser. It displays network activity graphically.
Read more
Justniffer – network TCP Packet Sniffer
justniffer is a network protocol analyzer that captures network traffic and produces logs.
Read more
sniffer – alternative network traffic sniffer
sniffer is an alternative network traffic sniffer that’s designed for network troubleshooting.
Read more
sniffglue – secure multithreaded packet sniffer
sniffglue is a network sniffer. Network packets are parsed concurrently using a thread pool to utilize all cpu cores.
Read more
Wazuh – platform used for threat prevention, detection, and response
Wazuh is a platform used for threat prevention, detection, and response.
Read more
Sagan – multi-threads, high performance log analysis engine
Sagan is billed as the advanced Suricata/Snort like log analysis engine.
Read more
Tripwire – security and data integrity tool
Open Source Tripwire is a free software security and data integrity tool useful for monitoring and alerting on specific file change(s).
Read more
Logwatch – powerful and versatile log parser and analyzer
Logwatch is a customizable log analysis system. Logwatch parses through your system’s logs and creates a report analyzing specific areas.
Read more
AIDE – Advanced Intrusion Detection Environment
AIDE (Advanced Intrusion Detection Environment is a file and directory integrity checker.
Read more
Samhain – host-based intrusion detection system
The Samhain host-based intrusion detection system (HIDS) provides file integrity checking and log file monitoring/analysis.
Read more
Rootkit Hunter – security tool
rkhunter (Rootkit Hunter) is a Unix-based tool that scans for rootkits, backdoors and possible local exploits.
Read more
chkrootkit – locally checks for signs of a rootkit
chkrootkit is a tool to locally check for signs of a rootkit.
Read more
LinSSID – graphical wireless scanning
LinSSID is a Wi-Fi network scanner. It’s graphically and functionally similar to Inssider.
Read more
wavemon – ncurses-based monitoring for wireless network devices
wavemon is a wireless device monitoring application. Watch signal and noise levels, packet statistics, device configuration and more.
Read more
horst – Highly Optimized Radio Scanning Tool
horst is a small, lightweight IEEE802.11 WLAN analyzer with a text interface.
Read more
Kismet – networking software
Kismet is an 802.11 layer2 wireless network detector, sniffer, and intrusion detection system. It works with wireless cards which supports raw monitoring.
Read more
aircrack-ng – WiFi security auditing tools suite
aircrack-ng is a complete suite of tools to assess WiFi network security.
Read more