ntop – High Performance Network Monitoring Solutions based on Open Source and Commodity Hardware.

ntopng High-speed web-based traffic analysis.
ntopng Edge Make your network a safer place
nDPI Identify hundreds of L7 protocols.
nProbe Cento 100Gbit NetFlow Probe and Traffic Classifier
Get Started! Go to the download page

Packet Capture

Wire-speed packet capture/transmission using commodity hardware with PF_RING. Zero-Copy packet distribution across threads, applications, Virtual Machines. Libpcap support for seamless integration with legacy applications.

Traffic Recording

10 Gbit and above lossless network traffic recording with n2disk. Industry standard PCAP file format. On-the-fly indexing to quickly retrieve interesting packets using fast-BPF and time interval. Precise traffic replay with disk2n.

Network Probe

nProbe: extensible NetFlow v5/v9/IPFIX probe with plugins support for L7 content inspection. nProbe Cento: up to 100 Gbit NetFlow, traffic classification, and packet shunting for IDS/packet-to-disk acceleration.

Traffic Analysis

High-speed web-based traffic analysis and flow collection using ntopng. Persistent traffic statistics in RRD format. Layer 7 analysis by leveraging on nDPI, an Open Source DPI framework.

Using ntopng as network sensor for SecurityOnion (and integrated with Suricata)

November 23, 2020

SecurityOnion (SO) is a popular Linux distribution for threat hunting and security. It included ElasticSearch as backend for storing alerts as well as Kibana-based web interface. SO includes out of the box a few sensors such as Suricata that is … Continue reading →
Embedding ntop: Nokia Beacon and Ubiquity UniFi Dream Machine

November 20, 2020

The latest generation of network devices are pretty powerful and open. This means that such devices ship with a Linux-based distribution such as OpenWRT or UniFI OS. In these devices it is possible to install third party software as the … Continue reading →
Using ntop tools on VyOS

November 18, 2020

VyOS is a popular open-source router and firewall platform based on Linux, and some of our users asked us to support it natively. This post explains you how to achieve that in a few simple steps. Prerequisites As VyOS is … Continue reading →
You’re Invited to the ntop MiniConference 2020: November 24th, December 3rd and 10th

November 13, 2020

This year due to the pandemic, we had to cancel our scheduled community event. Considered that we have introduced many new features in our tools we would like to invite you to an online mini-conference divided in three distinct events. … Continue reading →
Howto Write a Telegram Alert Endpoint for ntopng

November 5, 2020

Telegram is a popular messaging application that many people use daily to do instant messaging and receive notifications. As of ntopng 4.2, it is now possible to deliver alerts to external entities including Slack, email and Discord. This post will … Continue reading →
Say Hello to ntopng 4.2: Flexible Alerting, Major Speedup, Scada, Cybersecurity

November 2, 2020

We are pleased to introduce ntopng 4.2 that introduces several new features and breakthroughs while consolidating the changes introduced with 4.0. The main goals of this release include Enhance and simplify how alerts are delivered to consumers Many internal components … Continue reading →
Introducing nProbe 9.2: Collection Pass-Through and Reforge, OpenWRT support, Flexible JSON-export

November 2, 2020

This is to announce the release of nProbe 9.2. The main new features of this release are focused on flow collection speed and flexibility in particular for modern JSON-based flow consumers. This is to enable applications relying on nProbe, e.g. … Continue reading →
Security-Centric Traffic Analysis

October 23, 2020

Days ago we have given a short speak about cybersecurity at an Italian meetup. These are the presentation slides (English) where you can read more about the steps we have taken to make our tools more cybersecurity-oriented. Below you can … Continue reading →
Introducing nProbe Cento 1.12: Combining Visibility and Cybersecurity at 100 Gbit

October 20, 2020

This is to announce the released of cento 1.12 that is a maintenance release for ntop’s 100 Gbit probe. In this version we have integrated support of the latest nDPI features to combine processing speed with latest innovations in application … Continue reading →
Introducing n2disk 3.6: full L7 support, fast flow export, replay rate control

October 20, 2020

This is to announce a new n2disk release 3.6. This release adds full support for indexing and retrieving traffic based on the Layer-7 application protocol. This can now be enabled even when flow export is disabled, and it is possible … Continue reading →

ntopng High-speed web-based traffic analysis.

ntopng Edge Make your network a safer place

nDPI Identify hundreds of L7 protocols.

nProbe Cento 100Gbit NetFlow Probe and Traffic Classifier

Get Started! Go to the download page

Packet Capture

Traffic Recording

Network Probe

Traffic Analysis

Using ntopng as network sensor for SecurityOnion (and integrated with Suricata)

Embedding ntop: Nokia Beacon and Ubiquity UniFi Dream Machine

Using ntop tools on VyOS

You’re Invited to the ntop MiniConference 2020: November 24th, December 3rd and 10th

Howto Write a Telegram Alert Endpoint for ntopng

Say Hello to ntopng 4.2: Flexible Alerting, Major Speedup, Scada, Cybersecurity

Introducing nProbe 9.2: Collection Pass-Through and Reforge, OpenWRT support, Flexible JSON-export

Security-Centric Traffic Analysis

Introducing nProbe Cento 1.12: Combining Visibility and Cybersecurity at 100 Gbit

Introducing n2disk 3.6: full L7 support, fast flow export, replay rate control

Latest Posts

Upcoming Events