Intrusion Detection & Prevention
Snort
Open SourceLeading open-source intrusion detection and prevention system. Performs real-time traffic analysis and packet logging with extensive rule-based detection capabilities.
Visit Snort →Suricata
Open SourceHigh-performance network IDS, IPS, and network security monitoring engine. Multi-threaded architecture provides excellent performance for high-speed networks.
Visit Suricata →Zeek (formerly Bro)
Open SourcePowerful network analysis framework for security monitoring. Focuses on high-level network analysis and provides detailed logs of network activity.
Visit Zeek →OSSEC
Open SourceHost-based intrusion detection system with log analysis, file integrity checking, and real-time alerting. Works across multiple platforms including Linux, Windows, and macOS.
Visit OSSEC →Network Analysis & Monitoring
Wireshark
Open SourceWorld's foremost network protocol analyzer. Captures and displays packet data in real-time with deep inspection capabilities for hundreds of protocols.
Visit Wireshark →tcpdump
Open SourceCommand-line packet analyzer for network troubleshooting and security analysis. Lightweight and powerful for capturing and analyzing network traffic.
Visit tcpdump →NetworkMiner
Free / CommercialNetwork forensic analysis tool for extracting artifacts from captured network traffic. Performs passive network monitoring without sending packets on the network.
Visit NetworkMiner →Nagios
Open Source / CommercialComprehensive IT infrastructure monitoring solution. Monitors networks, systems, and applications with alerting and reporting capabilities.
Visit Nagios →Firewall & Security Platforms
pfSense
Open SourceFree and open-source firewall and router platform based on FreeBSD. Features include VPN, load balancing, traffic shaping, and comprehensive firewall capabilities.
Visit pfSense →OPNsense
Open SourceEasy-to-use open-source firewall and routing platform. Fork of pfSense with emphasis on security and frequent updates with modern UI.
Visit OPNsense →Security Onion
Open SourceFree Linux distribution for intrusion detection, network security monitoring, and log management. Includes Suricata, Zeek, and Elasticsearch stack.
Visit Security Onion →Network Mapping & Discovery
Angry IP Scanner
Open SourceFast and user-friendly network scanner for discovering active hosts and open ports. Cross-platform support with customizable scanning parameters.
Visit Angry IP Scanner →Netcat
Open SourceVersatile networking utility for reading and writing data across network connections. Essential tool for debugging, port scanning, and network testing.
Visit Netcat →Masscan
Open SourceUltra-fast port scanner capable of scanning the entire Internet in under 6 minutes. Transmits packets asynchronously for maximum speed.
Visit Masscan →