network
A cross-platform network monitoring terminal UI tool built with Rust.
RustNet provides real-time visibility into network connections with detailed state information, connection lifecycle management, deep packet inspection, and a terminal user interface.
Related contents:
Fast and friendly network scanner. the original IP scanner for Windows, Mac and Linux.
Angry IP Scanner (or simply ipscan) is an open-source and cross-platform network scanner designed to be fast and simple to use. It scans IP addresses and ports as well as has many other features.
Related contents:
Mercator is a Web application for managing the mapping of an information system as described in the Mapping the Information System Guide from ANSSI.
Mercator's objective is to enable a team to manage the mapping of an information system in a complete and consistent way, and to automatically generate the various reports needed to facilitate the maintenance and communication of this mapping.
Related contents:
An open source, off-grid, decentralized, mesh network built to run on affordable, low-power devices.
Meshtastic® is a project that lets you use inexpensive LoRa radios as a long range off-grid communicator for areas without reliable cellular service. These radios are great for hiking, skiing, paragliding - essentially any hobby where you don't have reliable internet access. Each member of the mesh can send and view text messages and enable optional GPS based location features.
OpenZiti is a free and open source project focused on bringing zero trust networking principles directly into any application. The project provides all the pieces required to implement a zero trust overlay network and provides all the tools necessary to integrate zero trust into your existing solutions. The OpenZiti project believes the principles of zero trust shouldn't stop at your network, those ideas belong in your application.
A fast, customizable service detection tool powered by a flexible fingerprint system. It helps you identify services, APIs, and network configurations across your infrastructure.
Les administrateurs informatique des laboratoires utilisent peuvent utiliser les resources suivantes.
WIFI / LAN intruder detector. Check the devices connected and alert you with unknown devices. It also warns of the disconnection of "always connected" devices
Go CLI and Library for quickly mapping organization network ranges using ASN information.
🖧🔍 WIFI / LAN intruder detector. Scans for devices connected to your network and alerts you if new and unknown devices are found.
Get visibility of what's going on on your WIFI/LAN network. Schedule scans for devices, port changes and get alerts if unknown devices or changes are found. Write your own Plugins with auto-generated UI and in-build notification system. Build out and easily maintain your network source of truth (NSoT).
Related contents:
Extend Docker with IPv6 NAT, similar to IPv4. This project mimics the way Docker does NAT for IPv4 and applies it to IPv6. Jump to Usage to get started right away.
Docker was not created with IPv6 in mind. It was added later and, while it has come a long way, is still not as usable as one would want. Much discussion is still going on as to how IPv6 should be used in a containerized world; see the various GitHub issues linked below.
Dynamic Routing on WireGuard for everyone.
Nylon is a Resilient Overlay Network built from WireGuard, designed to be performant, secure, reliable, and most importantly, easy to use.
Open Source NAC.
PacketFence is a fully supported, trusted, Free and Open Source network access control (NAC) solution. Boasting an impressive feature set including a captive-portal for registration and remediation, centralized wired, wireless and VPN management, industry-leading BYOD capabilities, 802.1X and RBAC support, integrated network anomaly detection with layer-2 isolation of problematic devices; PacketFence can be used to effectively secure small to very large heterogeneous networks.
Freely manage your devices. The open source, multi-platform, self-hosted, feature packed web site for remote device management.
Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, and case management. It also includes other tools such as Playbook, osquery, CyberChef, Elasticsearch, Logstash, Kibana, Suricata, and Zeek.
The network configuration abstraction renderer
Netplan is a utility for easily configuring networking on a linux system. You simply create a YAML description of the required network interfaces and what each should be configured to do. From this description Netplan will generate all the necessary configuration for your chosen renderer tool.
RouterOS is the operating system of RouterBOARD
It can also be installed on a PC and will turn it into a router with all the necessary features - routing, firewall, bandwidth management, wireless access point, backhaul link, hotspot gateway, VPN server and more.
Scapy is a powerful interactive packet manipulation libary written in Python. Scapy is able to forge or decode packets of a wide number of protocols, send them on the wire, capture them, match requests and replies, and much more.
Another Looking-glass Server.
NetMirror is a modern, feature-rich looking-glass server with a beautiful web interface for network diagnostics and performance testing.
A lightweight, browser-based tool for mapping Ethernet connections. Create switches, patch panels, wall ports, routers, etc. Assign ports, connect them, and visualise how your network is wired.
I2P is an anonymous network, exposing a simple layer that applications can use to anonymously and securely send messages to each other. The network itself is strictly message based (a la IP), but there is a library available to allow reliable streaming communication on top of it (a la TCP). All communication is end to end encrypted (in total there are four layers of encryption used when sending a message), and even the end points ("destinations") are cryptographic identifiers (essentially a pair of public keys).
Network recon framework.
IVRE is an open-source framework for network recon. It relies on open-source well-known tools (Nmap, Masscan, ZGrab2, ZDNS and Zeek (Bro)) to gather data (network intelligence), stores it in a database (MongoDB is the recommended backend), and provides tools to analyze it.
RDAP command line client. OpenRDAP is a command line client for the Registration Data Access Protocol, written in Go.
RDAP is a replacement for WHOIS, which provides domain name & IP address registration information in JSON format over HTTP.
vTunnel is a tool that proxies IP traffic between guest and host networks by using the VSOCK protocol.
This project provides the ability to tunnel IP traffic through the hypervisor so that connections can be proxied into or out of virtual machines.
Related contents:
Wireshark forDocker containers. See all incoming and outgoing requests in Docker containers with just one command.
Subtrace is Wireshark for your Docker containers. It lets developers see all incoming and outgoing requests in their backend server so that they can resolve production issues faster.
Cloud-Native Load-balancer.
loxilb is an open source cloud-native load-balancer based on GoLang/eBPF with the goal of achieving cross-compatibility across a wide range of on-prem, public-cloud or hybrid K8s environments. loxilb is being developed to support the adoption of cloud-native tech in telco, mobility, and edge computing.
IP accounting iconoclasm.
pmacct is a small set of multi-purpose passive network monitoring tools. It can account, classify, aggregate, replicate and export forwarding-plane data, ie. IPv4 and IPv6 traffic; collect and correlate control-plane data via BGP and BMP; collect and correlate RPKI data; collect infrastructure data via Streaming Telemetry. Each component works both as a standalone daemon and as a thread of execution for correlation purposes (ie. enrich NetFlow with BGP data).
Multi-vendor library to simplify Paramiko SSH connections to network devices.
Network automation to screen-scraping devices is primarily concerned with gathering output from show commands and with making configuration changes.
Netmiko aims to accomplish both of these operations and to do it across a very broad set of platforms. It seeks to do this while abstracting away low-level state control (i.e. eliminate low-level regex pattern matching to the extent practical).
Programming Protocol-independent Packet Processors (P4) is a domain-specific language for network devices, specifying how data plane devices (switches, NICs, routers, filters, etc.) process packets.
Bitcoin-powered WiFi Network. Community-built, Sovereign Wi-Fi Infrastructure
TollGate is the pay-as-you-go internet access on open networks. Streaming Sats for Free(dom) internet Access. Powered by Bitcoin Lightning Ecash.
Related contents:
Network & IT Training Courses Network Walks offers a wide range of IT & Network Training Courses spanning from Cisco CCNA, CCNP, CCIE till Huawei HCNA, HCNP...
A modern network scanner for GNOME.
A modern libadwaita-based network scanner for GNOME that helps you discover devices on your local network.
Related contents:
Network Analysis Tool.
BruteShark is a Network Forensic Analysis Tool (NFAT) that performs deep processing and inspection of network traffic (mainly PCAP files, but it also capable of directly live capturing from a network interface). It includes: password extracting, building a network map, reconstruct TCP sessions, extract hashes of encrypted passwords and even convert them to a Hashcat format in order to perform an offline Brute Force attack.
Optimized Node Monitoring for Network Analysis.
SONAR is designed to simplify network configuration audits in critical environments. With a clean interface and a robust architecture, it enables any personnel — even non-technical — to understand and document network flows independently.
A scalable overlay networking tool with a focus on performance, simplicity and security.
Nebula is a scalable overlay networking tool with a focus on performance, simplicity and security. It lets you seamlessly connect computers anywhere in the world. Nebula is portable, and runs on Linux, OSX, Windows, iOS, and Android. It can be used to connect a small number of computers, but is also able to connect tens of thousands of computers.
Related contents:
dentOS is a SwitchDev based NOS built on top of Open Network Linux
As a Linux Foundation project, DENT utilizes the Linux Kernel, Switchdev, and other Linux based projects as the basis for building a new standardized network operating system without abstractions or overhead. All underlying infrastructure — including ASIC and Silicon for networking and datapath — is treated equally; while existing abstractions, APIs, drivers, low-level overhead, and other open software are simplified. DENT unites silicon vendors, ODMs, SIs, OEMs, and end users across all verticals to enable the transition to disaggregated networks.
a network diagnostic tool.
Trippy combines the functionality of traceroute and ping and is designed to assist with the analysis of networking issues.
A Turn-key Suricata-based Network Detection and Response System. SELKS is now Clear NDR - Community
As the next generation open source turnkey Suricata implementation from Stamus Networks, the Clear NDR - Community edition is the successor to SELKS. We incorporated many lessons learned from the 10 years of SELKS innovation and user feedback into this platform.
Easy, direct connections that punch through NATs & stay connected as network conditions change.
Dumb pipes are Iroh Connections. The dumbpipe tool is a 200-line wrapper around the iroh rust crate. You can use the iroh Endpoint to create a connection to use as a dumb pipe in your own app.
TraceWrangler is a network capture file toolkit running on Windows (or on Linux, using WINE) that supports PCAP as well as the new PCAPng file format, which is now the standard file format used by Wireshark. The most prominent use case for TraceWrangler is the easy sanitization and anonymization of PCAP and PCAPng files (sometimes called "trace files", "capture files" or "packet captures"), removing or replacing sensitive data while being easy to use.
Mars is a cross-platform network component developed by WeChat.
Blocky is a DNS proxy and ad-blocker for the local network written in Go.
Remembering the Sun Microsystems Network File System.
This website gathers material related to the Sun Microsystems Network File System, a project that began in 1983 and remains a fundamental technology for today’s distributed computer systems.
PacketFence is a fully supported, trusted, Free and Open Source network access control (NAC) solution. Boasting an impressive feature set including a captive-portal for registration and remediation, centralized wired and wireless management, powerful BYOD management options, 802.1X support, layer-2 isolation of problematic devices; PacketFence can be used to effectively secure networks small to very large heterogeneous networks.
portchecker.io is a free utility to check the port status of a given hostname or IP address.
portchecker.io is an open-source API for checking port availability on specified hostnames or IP addresses. Ideal for developers and network admins, it helps troubleshoot network setups, validate firewall rules, and assess potential access points.
Bash script to automate setup of Linux router useful for IoT device traffic analysis and SSL mitm
Exploitation Framework for Embedded Devices. It consists of various modules that aid penetration testing operations.
A Simple & Powerful Network Tracing Tool.
Visualize the time packets spend in the kernel, watch & analyze in command line. Capture http/redis/mysql requests/responses in command line.
A Dumb WhoIs.
A simple web application for looking up WHOIS, IP, and ASN information using free APIs. The application automatically detects the type of query and provides formatted results with a clean, modern UI that supports both light and dark modes.
The Emulated Virtual Environment For Network, Security and DevOps Professionals.
Nmap Dashboard Mini Project.
nmap-did-what is a Grafana docker container and a Python script to parse Nmap XML output to an SQLite database. The SQLite database is used as a datasource within Grafana to view the Nmap scan details in a dashboard.
An Open Source DNS Server For Privacy & Security. Block ads & malware at DNS level for your entire network!
Technitium DNS Server is an open source authoritative as well as recursive DNS server that can be used for self hosting a DNS server for privacy & security. It works out-of-the-box with no or minimal configuration and provides a user friendly web console accessible using any modern web browser.
Related contents:
A self-hosted, real-time port monitoring and discovery tool.
By auto-discovering services on your systems, portracker provides a live, accurate map of your network. It helps eliminate manual tracking in spreadsheets and prevents deployment failures caused by port conflicts.
Cloonix is an AGPLv3 software that constitute a tool to create networks of kvm virtual machines or crun containers. It provides a graphical interactive canvas showing the topology for your network, cloonix is a virtualisation hypervisor.
The Swiss Army knife for 802.11, BLE, IPv4 and IPv6 networks reconnaissance and MITM attacks. bettercap is a powerful, easily extensible and portable framework written in Go which aims to offer to security researchers, red teamers and reverse engineers an easy to use, all-in-one solution with all the features they might possibly need for performing reconnaissance and attacking WiFi networks, Bluetooth Low Energy devices, wireless HID devices and Ethernet networks.
A modern load testing framework.
An open source load testing tool. Define user behaviour with Python code, and swarm your system with millions of simultaneous users.
a fully featured network monitoring system that provides a wealth of features and device support.
LibreNMS is an auto-discovering PHP/MySQL/SNMP based network monitoring which includes support for a wide range of network hardware and operating systems including Cisco, Linux, FreeBSD, Juniper, Brocade, Foundry, HP and many more.
Networking component for interconnecting Pods and Services across Kubernetes clusters.
Submariner enables direct networking between Pods and Services in different Kubernetes clusters, either on-premises or in the cloud.
Lighthouse provides DNS discovery to Kubernetes clusters connected by Submariner in multi-cluster environments.
A "public suffix" is one under which Internet users can (or historically could) directly register names. Some examples of public suffixes are com, co.uk and pvt.k12.ma.us. The Public Suffix List is a list of all known public suffixes.
The Public Suffix List is an initiative of Mozilla, but is maintained as a community resource. It is available for use in any software, but was originally created to meet the needs of browser manufacturers.
Mobile forensic & Network traffic analysis.
PiRogue tool suite (PTS) is an open-source tool suite that provides a comprehensive mobile forensic and network traffic analysis platform targeting mobile devices both Android and iOS, internet of things devices (devices that are connected to the user mobile apps), and in general any device using wi-fi to connect to the Internet.