Audience
Digital forensics investigators looking for a tool to reconstruct files, images, emails and other artifacts from captured network traffic
About NetworkMiner
NetworkMiner is a network forensics tool that extracts artifacts such as files, images, emails, and passwords from captured network traffic in PCAP files. It can also capture live network traffic by sniffing a network interface. Detailed information about each IP address in the analyzed network traffic is aggregated into a network host inventory, which can be used for passive asset discovery and to get an overview of communicating devices. NetworkMiner is primarily designed to run on Windows but can also be used on Linux. Since its first release in 2007, it has become a popular tool among incident response teams and law enforcement and is used by companies and organizations worldwide.
Other Popular Alternatives & Related Software
Sniffnet
Sniffnet is a network monitoring tool designed to help users easily keep track of their Internet traffic. Whether gathering statistics or inspecting in-depth network activities, Sniffnet provides comprehensive coverage. It emphasizes user experience, ensuring ease of use compared to other cumbersome network analyzers. Completely free and open source, Sniffnet is dual-licensed under MIT or Apache-2.0, with the full source code available on GitHub. Developed entirely in Rust, it leverages this modern programming language to build efficient and reliable software, emphasizing performance and safety. Key features include selecting a network adapter to inspect, applying filters to observed traffic, viewing overall statistics and real-time charts of Internet traffic, exporting comprehensive capture reports as PCAP files, identifying over 6,000 upper-layer services, protocols, trojans, and worms, discovering domain names and ASNs of hosts, pinpointing connections in the local network.
Learn more
Xplico
Xplico is installed in the major distributions of digital forensics and penetration testing: Kali Linix, BackTrack, DEFT, Security Onion, Matriux, BackBox, CERT Forensics Tools, Pentoo and CERT-Toolkit. Xplico allows concurrent access by multiple users. Any user can manage one or more Cases. The UI is a Web User Interface and its backend DB can be SQLite, MySQL or PostgreSQL. Xplico can be used as a Cloud Network Forensic Analysis Tool. The goal of Xplico is extract from an internet traffic capture the applications data contained. For example, from a pcap file Xplico extracts each email (POP, IMAP, and SMTP protocols), all HTTP contents, each VoIP call (SIP), FTP, TFTP, and so on. Xplico isn’t a network protocol analyzer. Xplico is an open source Network Forensic Analysis Tool (NFAT). At each data reassembled by Xplico is associated a XML file that uniquely identifies the flows and the pcap containing the data reassembled.
Learn more
Obkio
Network Performance Monitoring Made Easy. Obkio is a simple Network Monitoring and Troubleshooting SaaS solution that allows users to continuously monitor the health of their network and core business applications to improve the end-user experience.
The innovative software application identifies the causes of intermittent network, VoIP, video, and applications slowdown in seconds and collect information to quickly troubleshoot problems before they affect your end-users.
Deploy network monitoring Agents at strategic locations in a company's offices or network destinations such as data sites, remote sites, external client sites, or public or private clouds to continuously monitor performance using synthetic traffic exchanged every 500ms.
Obkio's Agents give you a 360-degree overview of your network by measuring the network metrics like matter most (jitter, latency, packet loss, VoIP quality), and alerting you of any performance degradation.
Learn more
Paessler PRTG
Paessler PRTG is an all-inclusive monitoring software solution developed by Paessler. Equipped with an easy-to-use, intuitive interface with a cutting-edge monitoring engine, PRTG optimizes connections and workloads as well as reduces operational costs by avoiding outages while saving time and controlling service level agreements (SLAs). The solution is packed with specialized monitoring features that include flexible alerting, cluster failover solution, distributed monitoring, in-depth reporting, maps and dashboards, and more.
PRTG monitors your entire IT infrastructure. All important technologies are supported:
• SNMP: ready-to-use and custom options
• WMI and Windows Performance Counters
• SSH: for Linux/Unix and macOS systems
• Traffic analysis using flow protocols or packet sniffing
• HTTP requests
• REST APIs returning XML or JSON
• Ping, SQL, and many more
Learn more
Pricing
Starting Price:
$1,300 one-time payment
Free Version:
Free Version available.
Integrations
No integrations listed.
Company Information
Netresec
Founded: 2010
Sweden
www.netresec.com/
Videos and Screen Captures
Other Useful Business Software
Auth0 for AI Agents now in GA
Connect your AI agents to apps and data more securely, give users control over the actions AI agents can perform and the data they can access, and enable human confirmation for critical agent actions.
Product Details
Platforms Supported
Windows
Linux
Training
Documentation
Live Online
In Person
Videos
Support
Phone Support
Online
