28 projects
Cilium
Cilium is an open source software for providing, securing and observing network connectivity between container workloads - cloud native, and fueled by the revolutionary Kernel technology eBPF.
7,505
2,107
$1.1B
Xray-core
Xray-core is a platform for building proxies to bypass network restrictions and implement secure communications. It is a unified transport layer protocol that supports multiple protocols including VLESS, VMess, Trojan, Shadowsocks, and others. The project focuses on security, reliability and high performance network tunneling.
3,521
255
$3.2M
ntopng
Web-based Traffic and Security Network Traffic Monitoring
2,213
169
$25M
FreeRADIUS
FreeRADIUS is an open source RADIUS server implementation that provides authentication, authorization and accounting (AAA) services for networks. It is widely used for managing network access control, supporting various authentication methods and protocols like EAP, PEAP, and TTLS.
1,231
231
$24M
LIBPCAP 1.x.y
LIBPCAP is a portable C/C++ library for network traffic capture that provides a high-level interface to packet capture systems. It allows applications to capture packets from network interfaces and is widely used in network monitoring, analysis, and security tools.
865
206
$2.6M
Zeek
Zeek is an open-source network security monitoring tool that provides real-time analysis of network traffic for detecting suspicious activities. It functions as a passive network traffic analyzer that inspects all traffic on a link in depth for signs of suspicious activity, offering powerful scripting capabilities for network analysis and intrusion detection.
865
114
$35M
NetAlertX
Network intruder and presence detector. Scans for devices connected to your network and alerts you if new and unknown devices are found.
821
59
$12M
nDPI
Open Source Deep Packet Inspection Software Toolkit
811
106
$34M
Suricata
Suricata is an open source network threat detection engine providing real-time intrusion detection (IDS), intrusion prevention (IPS), network security monitoring (NSM) and offline pcap processing. It inspects network traffic using powerful and extensive rules and signature language, and offers support for Lua scripting for detection of complex threats.
774
113
$17M
Maltrail
Maltrail is a malicious traffic detection system that utilizes publicly available lists of malicious and/or suspicious trails, along with static trails compiled from various AV reports and custom user-defined lists. It monitors network traffic and identifies threats based on these trails, providing real-time alerts for potential security incidents.
385
49
$55M
Firewalla
http://firewalla.com
Malcolm
Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.
Moloch
Arkime is an open source, large scale, full packet capturing, indexing, and database system.
Nginx Ultimate Bad Bot Blocker
Nginx Block Bad Bots, Spam Referrer Blocker, Vulnerability Scanners, User-Agents, Malware, Adware, Ransomware, Malicious Sites, with anti-DDOS, Wordpress Theme Detector Blocking and Fail2Ban Jail for Repeat Offenders
Nikto
Nikto web server scanner
PcapPlusPlus
PcapPlusPlus is a multiplatform C++ library for capturing, parsing and crafting of network packets. It is designed to be efficient, powerful and easy to use. It provides C++ wrappers for the most popular packet processing engines such as libpcap, Npcap, WinPcap, DPDK, AF_XDP and PF_RING.
Pwnagotchi
(⌐■_■) - Raspberry Pi instrumenting Bettercap for Wi-Fi pwning.
RethinkDNS
DNS over HTTPS / DNS over Tor / DNSCrypt client, WireGuard proxifier, firewall, and connection tracker for Android.
Scapy
Scapy: the Python-based interactive packet manipulation program & library.
Security Onion
Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, detections, and case management. It also includes other tools such as osquery, CyberChef, Elasticsearch, Logstash, Kibana, Suricata, and Zeek.
Snort++
Snort++
StratosphereLinuxIPS
Slips, a free software behavioral Python intrusion prevention system (IDS/IPS) that uses machine learning to detect malicious behaviors in the network traffic. Stratosphere Laboratory, AIC, FEL, CVUT in Prague.
VAST
Tenzir is the data pipeline engine for security teams.
Wireshark
Read-only mirror of Wireshark's Git repository at https://gitlab.com/wireshark/wireshark. ⚠️ GitHub won't let us disable pull requests. ⚠️ THEY WILL BE IGNORED HERE ⚠️ Upload them at GitLab instead.
ZMap
ZMap is a fast single packet network scanner designed for Internet-wide network surveys.
mitmproxy
An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.
tcpdump
the TCPdump network dissector
testssl.sh
Testing TLS/SSL encryption anywhere on any port