NIKSUN's award-winning NetDetector is a full-featured appliance for network security surveillance, signature-based anomaly detection, analytics and forensics. It complements existing network security tools, such as firewalls, intrusion detection/preventio ...

NetWitness NextGen is designed for enterprises to address concurrent problems of insider threat management, data leakage protection, compliance verification, network e-discovery, and designer malware and zero-day detection. Originally developed for the US ...

NetIntercept is a network monitoring and analysis system. It is delivered as a complete system, with hardware and software pre-installed, ready to be placed in a machine room or NOC and plugged into the network at the firewall border. To use NetInterce ...

The Solera DS Series network forensics appliance is a revolutionary advance that gives you visibility into all of the data that crosses your network. The Solera DS series is a product line of network forensics appliances that capture and record at full-l ...

NetworkMiner is a comprehensive Network Forensic Analysis Tool (NFAT) for Windows (but also works in Linux / Mac OS X / FreeBSD), which has become increasingly popular among incident response teams and law enforcement. Without placing any traffic on the n ...

Hakabana is an open source monitoring tool, which visiualises network traffic using Haka and Kibana. It leverages on the Haka framework to capture packets, dissect them  and extract various pieces of information from the network, such as; bandwidth, ...

Security Onion is a Linux distro for intrusion detection, network security monitoring, and log management. It's based on Ubuntu and contains Snort, Suricata, Bro, OSSEC, Sguil, Squert, Snorby, ELSA, Xplico, NetworkMiner, and many other security tools. The ...

Password Sniffer Console is a command-line based password sniffing tool, which captures email, web and FTP login passwords passing through the network. This tool supports the following protocols: HTTP FTP POP3 IMAP SMTP

The goal of Xplico is extract from an internet traffic capture the applications data contained. For example, from a pcap file Xplico extracts each email (POP, IMAP, and SMTP protocols), all HTTP contents, each VoIP call (SIP), FTP, TFTP, and so on. Xplico ...

A tool to collect DNS records passively to aid Incident handling, Network  Security Monitoring (NSM) and general digital forensics. PassiveDNS sniffs traffic from an interface or reads a pcap-file and outputs the DNS-server answers to a log file. Passive ...

An extensible network forensic analysis framework. Enables rapid development of plugins to support the dissection of network packet captures. Key features:Robust stream reassemblyIPv4 and IPv6 supportCustom output handlersChainable decoders

Stenographer is a full-packet-capture utility for buffering packets to disk for intrusion detection and incident response purposes. It provides a high-performance implementation of NIC-to-disk packet writing, handles deleting those files as disk fills up, ...

Evidence of intruders and insider threats lies within network communications. Detect network-based threats with real-time network monitoring and big data analytics. Expedite investigations by giving your incident responders access to rich network forensic ...

Transform your physical or virtual system into a network forensics sensor with extensive corresponding metadata, full packet capture, and customizable advanced correlation. With Network Monitor Freemium, you’ll quickly identify emerging threats on your n ...