Open Source Wireshark Alternatives

    The best open source alternative to Wireshark is tcpdump, which is both free and Open Source. If that doesn't suit you, our users have ranked more than 50 alternatives to Wireshark and 18 is open source so hopefully you can find a suitable replacement. Other interesting open source alternatives to Wireshark are Nethogs (Free, Open Source), Ettercap (Free, Open Source), Sysdig (Free, Open Source) and NetworkMiner (Free, Open Source).

    This page was last updated Sep 24, 2021

      • FreeOpen Source
      • Mac
      • Windows
      • Linux
      • BSD
      tcpdump is a common packet analyzer that runs under the command line. It allows the user to intercept and display TCP/IP and other packets being transmitted or received over a network to which the computer is attached.
      show more
      tcpdump vs Wireshark opinions
      Most users think tcpdump is a great alternative to Wireshark.
      It's open source and use CLI
      Positive comment about 2 years ago

      0
      • FreeOpen Source
      • Linux
      • Xfce
      NetHogs is a small 'net top' tool. Instead of breaking the traffic down per protocol or per subnet, like most tools do, it groups bandwidth by process.


      • FreeOpen Source
      • Mac
      • Windows
      • Linux
      Ettercap is a suite for man in the middle attacks on LAN. It features sniffing of live connections, content filtering on the fly and many other interesting tricks.
      Most users think Ettercap is a great alternative to Wireshark.
    1. Sysdig is open source, system-level exploration: capture system state and activity from a running Linux instance, then save, filter and analyze. Think of it as strace + tcpdump + lsof + awesome sauce. With a little Lua cherry on top.
      No screenshots yet
    2. NetworkMiner is a Network Forensic Analysis Tool (NFAT) for Windows. NetworkMiner can parse PCAP files and regenerate/reassemble transmitted files and certificates from PCAP files with HTTP, FTP, SMB, SMB2, TFTP and several other protocols.
      show more


      • FreeOpen Source
      • Windows
      • Linux
      Ethereal® is used by network professionals around the world for troubleshooting, analysis, software and protocol development, and education. It has all of the standard features you would expect in a protocol analyzer, and several features not seen in any other product.

      Discontinued

    3. PCAPdroid is an android app to capture the phone traffic and analyze it remotely (e.g. via Wireshark). The traffic can be easily downloaded from a remote device thanks to the integrated HTTP server, or streamed to a remote UDP receiver.
      show more
    4. Driftnet is a program which listens to network traffic and picks out images from TCP streams it observes.
      • FreeOpen Source
      • Windows
      Packetyzer provides a Windows user interface for the Ethereal packet capture and dissection library. Ethereal is used by network professionals around the world for troubleshooting, analysis, software and protocol development, and education.

      Discontinued

      show more
      • FreeOpen Source
      • Mac
      • Windows
      • Linux
      Scapy is a powerful interactive packet manipulation program. It is able to forge or decode packets of a wide number of protocols, send them on the wire, capture them, match requests and replies, and much more.
      show more
    Showing 10 of 18 alternatives