tcpdump

tcpdump is a command-line packet sniffing and protocol analyzer tool writtin in C/C++. It captures live RX/TX packets on a network interface in promiscuous mode, and displays the content of the packets in a human-readable format in real time. tcpdump can write captured raw packets to a file, which then can be loaded later by tcpdump for offline analysis. The underlying packet capture library (libpcap for Linux/Unix, and WinPcap for Windows) can selectively capture packets based on filtering rules expressed in BPF (berkely packet filter). The BPF-based filter can capture packets with specific source/destination IP addresses/prefixes, protocols (IP/ICMP/UDP/TCP), port numbers, protocol fields (TCP SYN/FIN/ACK), or even raw bit values at an arbitrary byte offset.


  • Website: http://www.tcpdump.org/
  • Platform: Cross-platform
  • License: BSD
  • Documentation: http://www.tcpdump.org/index.html#documentation
  • Source repository: git
  • Community: mailing list bug tracker
  • Features: ,
  • Similar Software

    ntopng ntopng is a real-time network traffic monitor offering HTML5/AJAX-based web interface. ntopng can visualize elephant flows, IP geolocation, traffic matrix of local networks, and geolocation/AS maps o...
    Cacti Cacti is an open-source network monitoring and visualization tool offering web-based interface. Cacti can be configured with poll-based simple network management protocol (SNMP) to collect time-serie...
    GoAccess GoAccess is an open-source, console-based, interactive web server log viewer. It allows you to view and analyze web server logs via ncurses-based terminal interface in real-time. GoAccess parses gro...
    Nagios Nagios is an industry-standard open-source IT infrastructure and network monitoring software which can monitor server resources (e.g., CPU, memory, disk usage), network equipments (e.g., switches or r...
    Bro Bro is an open-source network monitoring and intrusion detection system written in C++. Bro collects live packets via the libpcap interface, analyzes packet contents, generates events from the analys...

    Subscribe to Xmodulo List

    Do you want to receive posts about Linux applications and software recommended by Xmodulo List? Enter your email address below, and we will deliver our recommendations straight to your email box, for free. Delivery powered by Google Feedburner.

    Leave a comment

    Your email address will not be published. Required fields are marked *