Wireshark Alternatives for Linux

There are many alternatives to Wireshark for Linux if you are looking for a replacement. The best Linux alternative is tcpdump, which is both free and Open Source. If that doesn't suit you, our users have ranked more than 50 alternatives to Wireshark and many of them are available for Linux so hopefully you can find a suitable replacement. Other interesting Linux alternatives to Wireshark are Intercepter-NG, Proxyman, Ettercap and Termshark.

filter to find the best alternatives

Wireshark alternatives are mainly Network Monitors, but if you're looking for Network Analyzers or HTTP(S) Debuggers you can filter on that. Other popular filters include Android, iPhone, iPad, Mac, Linux, iPhone + Network Monitoring and iPhone + Network Analyzer. You can also filter by region, for example EU-based alternatives if you prefer software developed in the European Union. These are just examples - use the filter bar below to find more specific alternatives to Wireshark.
More about Wireshark
Copy a direct link to this comment to your clipboard
Wireshark alternatives page was last updated

Alternatives list

  1. tcpdump icon

    tcpdump

     60 likes

    tcpdump is a common packet analyzer that runs under the command line. It allows the user to intercept and display TCP/IP and other packets being transmitted or received over a network to which the computer is attached.

    28 tcpdump alternatives

    Cost / License

    • Free
    • Open Source

    Application type

    Platforms

    • Mac
    • Windows
    • Linux
    • BSD
    tcpdump screenshot 1
     
    |
    1
    37
    Comments about tcpdump as an Alternative to Wireshark
    Guest
    Positive
    0

    It's open source and use CLI

    Review by a new / low-activity user.
    tcpdump icon
    tcpdump icon

    • Most users think tcpdump is a great Wireshark alternative.

    • tcpdump is Free and Open SourceWireshark is also Free and Open Source
  2. Intercepter-NG icon

    Intercepter-NG

     15 likes

    Intercepter-NG is a multifunctional network toolkit for various types of IT specialists.

    Cost / License

    • Free
    • Proprietary

    Application type

    Alerts

    • Discontinued
    • Warning

    Platforms

    • Mac
    • Windows
    • Linux
    • Android
    • iPhone
    • Android Tablet
    • BSD
    • iPad
    Android App
     
    |
    28
  4. Proxyman icon

    Proxyman

     15 likes

    Proxyman is a high-performance macOS app, which enables developers to view HTTP/HTTPS requests from apps and domains. Available on macOS, iOS, Windows & Linux.

    54 Proxyman alternatives

    Cost / License

    • Paid
    • Proprietary

    Application type

    Platforms

    • Mac
    • Windows
    • Linux
    • iPhone
    • iPad
    Native macOS app.
     
    |
    1
    Comments about Proxyman as an Alternative to Wireshark
    Guest
    Negative
    0

    Proxyman is focused on http request, wireshark has more comprehensive set of features

    Review by a new / low-activity user.
    Proxyman icon
    Proxyman icon
    • Proxyman is Paid and ProprietaryWireshark is Free and Open Source
  5. Ettercap icon

    Ettercap

     19 likes

    Ettercap is a suite for man in the middle attacks on LAN. It features sniffing of live connections, content filtering on the fly and many other interesting tricks.

    20 Ettercap alternatives

    Cost / License

    Application type

    Platforms

    • Mac
    • Windows
    • Linux
    Ettercap screenshot 1
     
    |
    7
  6. Termshark icon

    Termshark

     Like

    If you're debugging on a remote machine with a large pcap and no desire to scp it back to your desktop, termshark can help!

    Cost / License

    • Free
    • Open Source (MIT)

    Platforms

    • Mac
    • Windows
    • Linux
    • BSD
     
  7. Sysdig icon

    Sysdig

     12 likes

    Sysdig is open source, system-level exploration: capture system state and activity from a running Linux instance, then save, filter and analyze. Think of it as strace + tcpdump + lsof + awesome sauce.

    Cost / License

    • Free
    • Open Source

    Platforms

    • Mac
    • Windows
    • Linux
     

  9. Scapy

     7 likes

    Scapy is a powerful interactive packet manipulation program. It is able to forge or decode packets of a wide number of protocols, send them on the wire, capture them, match requests and replies, and much more.

    Cost / License

    Platforms

    • Mac
    • Windows
    • Linux
    Scapy screenshot 1
     

  10. Nethogs

     21 likes

    NetHogs is a small 'net top' tool. Instead of breaking the traffic down per protocol or per subnet, like most tools do, it groups bandwidth by process.

    25 Nethogs alternatives

    Cost / License

    • Free
    • Open Source

    Platforms

    • Linux
    • Xfce
    Nethogs screenshot 1
     
  11. Mojo Packets icon

    Mojo Packets

     2 likes

    Mojo Packets™ is web based tool that simplifies trace based analysis and troubleshooting of connectivity/performance issues observed in Wi-Fi (IEEE 802.11) environments.

    Cost / License

    • Free
    • Proprietary

    Platforms

    • Mac
    • Windows
    • Linux
    • Online
    • Wireshark
    Mojo Packets
     
    |
    1
    Comments about Mojo Packets as an Alternative to Wireshark
    karanndrums
    Positive
    0

    It can do automated analysis of a packet capture.

    Mojo Packets icon
    Mojo Packets icon
    • Mojo Packets is Free and ProprietaryWireshark is Free and Open Source
  12. Ostinato icon

    Ostinato

     4 likes

    Ostinato is a network packet and traffic generator and analyzer with a friendly GUI. It aims to be "Wireshark in Reverse" and thus become complementary to Wireshark. It features custom packet crafting with editing of any field for several protocols: Ethernet, 802.

    Cost / License

    • Paid
    • Proprietary

    Platforms

    • Mac
    • Windows
    • Linux
    Main Window
     

  13. Network Diagnostic Tool

     1 like

    The Network Diagnostic Tool (NDT) is a client/server program that provides network configuration and performance testing to a users desktop or laptop computer. The system is composed of a client program (command line or java applet) and a pair of server programs (a webserver...

    Cost / License

    • Free
    • Proprietary

    Application type

    Platforms

    • Windows
    • Linux
    • Android
     

  14. tcpflow

     3 likes

    tcpflow, a TCP Flow Recorder, is a program that captures data transmitted as part of TCP connections (flows), and stores the data in a way that is convenient for protocol analysis or debugging. A program like 'tcpdump' shows a summary of packets seen on the wire, but...

    Cost / License

    Platforms

    • Mac
    • Windows
    • Linux
    tcpflow screenshot 1
     
12 of 24 Wireshark alternatives