NetworkMiner
NetworkMiner is a Network Forensic Analysis Tool (NFAT) for Windows. NetworkMiner can parse PCAP files and regenerate/reassemble transmitted files and certificates from PCAP files with HTTP, FTP, SMB, SMB2, TFTP and several other protocols.
EU
Features
- Portable
Tags
- Internet Security
- Network Security
- forensics
- pcap
- Packet Sniffer
NetworkMiner News & Activities
Recent activities
POX added NetworkMiner as alternative to Edgeshark
POX added NetworkMiner as alternative to Timesketch
eladlad added NetworkMiner as alternative to Red Hand Analyzer- POX added NetworkMiner as alternative to Packémon
NetworkMiner information
Developed by
Netresec Licensing
Open Source and Free product.Alternatives
38 alternatives listedSupported Languages
- English
What is NetworkMiner?
NetworkMiner is an open source Network Forensic Analysis Tool (NFAT) for Windows (but also works in Linux / Mac OS X / FreeBSD). NetworkMiner can be used as a passive network sniffer/packet capturing tool in order to detect operating systems, sessions, hostnames, open ports etc. without putting any traffic on the network. NetworkMiner can also parse PCAP files for off-line analysis and to regenerate/reassemble transmitted files and certificates from PCAP files.
NetworkMiner makes it easy to perform advanced Network Traffic Analysis (NTA) by providing extracted artifacts in an intuitive user interface. The way data is presented not only makes the analysis simpler, it also saves valuable time for the analyst or forensic investigator.
NetworkMiner has, since the first release in 2007, become a popular tool among incident response teams as well as law enforcement. NetworkMiner is today used by companies and organizations all over the world.