Free tcpdump Alternatives for Linux

There are many alternatives to tcpdump for Linux if you are looking to replace it. The most popular Linux alternative is Small Wireshark iconWireshark, which is both free and Open Source. If that doesn't suit you, our users have ranked 21 alternatives to tcpdump and nine of them are available for Linux so hopefully you can find a suitable replacement. Other interesting Linux alternatives to tcpdump are Small Sysdig iconSysdig (Free, Open Source), Small NetworkMiner iconNetworkMiner (Free, Open Source), Small PacketSled iconPacketSled (Freemium) and Small Ethereal iconEthereal (Free, Open Source).

The list of alternatives was last updated on Feb 17, 2020

  • Wireshark is the world's foremost network protocol analyzer. It lets you capture and interactively browse the traffic running on a computer network.
    Almost everyone think this is great alternative to tcpdump.
  • Sysdig is open source, system-level exploration: capture system state and activity from a running Linux instance, then save, filter and analyze.
    No screenshots yet
    • Free • Open Source
    • Mac
    • Windows
    • Linux


  • NetworkMiner is a Network Forensic Analysis Tool (NFAT) for Windows. NetworkMiner can parse PCAP files and regenerate/reassemble transmitted files and certificates from PCAP files with HTTP, FTP, SMB, SMB2, TFTP and several other protocols.
    • Free • Open Source
    • Mac
    • Windows
    • Linux
  • PacketSled is next generation network forensics and breach detection.
    • Freemium
    • Mac
    • Windows
    • Linux
    • Online
  • Ethereal® is used by network professionals around the world for troubleshooting, analysis, software and protocol development, and education.

    Discontinued

    • Free • Open Source
    • Windows
    • Linux
  • Driftnet is a program which listens to network traffic and picks out images from TCP streams it observes.
  • tcpflow, a TCP Flow Recorder, is a program that captures data transmitted as part of TCP connections (flows), and stores the data in a way that is convenient for protocol analysis...
    • Free • Open Source
    • Mac
    • Windows
    • Linux
  • httpry is a tool designed for displaying and logging HTTP traffic.
    No screenshots yet
    • Free • Open Source
    • Linux
  • justniffer is a TCP sniffer. It reassembles and reorders packets and displays the tcp flow in a customizable way. It can log network traffic in web server log format. It can also log network services performances and extract http content.
    No screenshots yet
    • Free • Open Source
    • Linux