Open Source Wireshark AlternativesTop Network Analyzers & Network Monitors like Wireshark

The best open source alternative to Wireshark is tcpdump. If that doesn't suit you, our users have ranked more than 50 alternatives to Wireshark and many of them is open source so hopefully you can find a suitable replacement. Other interesting open source alternatives to Wireshark are NetworkMiner, Proxyman, Ettercap and PCAPdroid.

filter to find the best alternatives

Wireshark alternatives are mainly Network Monitors, but if you're looking for Network Analyzers or Website Monitoring Tools you can filter on that. Other popular filters include Android, iPhone, Mac, Linux, Open Source, iPhone + Network Monitoring and iPhone + Network Analyzer. You can also filter by region, for example EU-based alternatives if you prefer software developed in the European Union. These are just examples - use the filter bar below to find more specific alternatives to Wireshark.
Copy a direct link to this comment to your clipboard
Wireshark alternatives page was last updated

Alternatives list

  1. tcpdump icon
     60 likes

    Command-line packet analyzer for monitoring, capturing, and filtering network traffic in real time. Supports TCP/IP protocols, pcap file export, BPF syntax, timestamped outputs, and works on UNIX-like systems with both wired and wireless interfaces.

    30 tcpdump alternatives

    Cost / License

    • Free
    • Open Source

    Application type

    Platforms

    • Mac
    • Windows
    • Linux
    • BSD
     
    |
    1
  2. NetworkMiner icon
     19 likes

    NetworkMiner is a Network Forensic Analysis Tool (NFAT) for Windows. NetworkMiner can extract transmitted files and certificates from PCAP files containing HTTP, FTP, SMB, SMB2, TFTP and several other protocols.

    40 NetworkMiner alternatives

    Cost / License

    Platforms

    • Windows
    • Linux
     
  3. Proxyman icon
     16 likes

    Monitor, intercept and debug HTTP/HTTPS and WebSocket traffic on macOS, iOS, Windows, and Linux. Includes advanced features such as Breakpoint, Map Local/Remote, scripting, filtering, reverse proxy, DNS spoofing, and automation for backend development.

    62 Proxyman alternatives

    Cost / License

    • Paid
    • Open Source

    Application type

    Platforms

    • Mac
    • Windows
    • Linux
    • Android
    • iPhone
    • iPad
     
    |
    1
  4. Ettercap icon
     18 likes

    Ettercap is a suite for man in the middle attacks on LAN. It features sniffing of live connections, content filtering on the fly and many other interesting tricks.

    20 Ettercap alternatives

    Cost / License

    Application type

    Platforms

    • Mac
    • Windows
    • Linux
     
  5. PCAPdroid icon
     5 likes

    PCAPdroid is an android app to capture the phone traffic and analyze it remotely (e.g. via Wireshark). The traffic can be easily downloaded from a remote device thanks to the integrated HTTP server, or streamed to a remote UDP receiver.

    44 PCAPdroid alternatives

    Cost / License

    Platforms

    • Android
    • F-Droid
     
  6. Termshark icon
     Like

    If you're debugging on a remote machine with a large pcap and no desire to scp it back to your desktop, termshark can help!

    52 Termshark alternatives

    Cost / License

    • Free
    • Open Source (MIT)

    Platforms

    • Mac
    • Windows
    • Linux
    • BSD
     
  7. Sysdig icon
     12 likes

    Sysdig is open source, system-level exploration: capture system state and activity from a running Linux instance, then save, filter and analyze. Think of it as strace + tcpdump + lsof + awesome sauce.

    Cost / License

    • Free
    • Open Source

    Platforms

    • Mac
    • Windows
    • Linux
     
  8.  6 likes

    Scapy is a powerful interactive packet manipulation program. It is able to forge or decode packets of a wide number of protocols, send them on the wire, capture them, match requests and replies, and much more.

    Cost / License

    Platforms

    • Mac
    • Windows
    • Linux
     
  9.  21 likes

    NetHogs is a small 'net top' tool. Instead of breaking the traffic down per protocol or per subnet, like most tools do, it groups bandwidth by process.

    Cost / License

    • Free
    • Open Source

    Platforms

    • Linux
    • Xfce
     
  10. TCP Viewer icon
     2 likes

    Real-time macOS network tool captures, displays, and filters TCP traffic using AppKit, libpcap, and Wireshark libraries, supports PCAP/PCAPNG files, offers protocol filters, drag-and-drop, noise reduction, detailed packet review, export options, and grouped traffic analysis.

    16 TCP Viewer alternatives

    Cost / License

    Application type

    Platforms

    • Mac
     
  11.  3 likes

    tcpflow, a TCP Flow Recorder, is a program that captures data transmitted as part of TCP connections (flows), and stores the data in a way that is convenient for protocol analysis or debugging. A program like 'tcpdump' shows a summary of packets seen on the wire, but...

    Cost / License

    Platforms

    • Mac
    • Windows
    • Linux
     
  12. G-Earth icon
     2 likes

    Cross-platform Habbo packet manipulator.

    Cost / License

    • Free
    • Open Source (MIT)

    Platforms

    • Windows
    • Mac
    • Linux
     
12 of 28 Wireshark alternatives