ntop – High Performance Network Monitoring Solutions based on Open Source and Commodity Hardware.

Visualize 360° Web-based Network traffic visibility.

Try ntopng
React Get notified about Cyber Incidents.

Try ntopng
Protect Make your network a safer place.

Try nEdge
Inspect Identify hundreds of L7 protocols.

Try nDPI
Get Started! Go to the download page

Packet Capture

Wire-speed packet capture and transmission using commodity hardware with PF_RING. Zero-Copy packet distribution across threads, applications, Virtual Machines. Libpcap support for seamless integration with legacy applications. Remote capture with nTAP.

Traffic Recording

100 Gbit lossless network traffic recording with n2disk. Industry standard PCAP file format with nanosecond resolution. Layer-7 on-the-fly indexing to quickly retrieve interesting packets using fast-BPF and time interval. Precise traffic replay with disk2n.

Network Probe

NetFlow v5/v9/IPFIX data export and collection with nProbe, an extensible probe with plugins support for L7 content inspection. 100 Gbit NetFlow, traffic classification, and packet shunting for IDS and packet-to-disk acceleration with nProbe Cento.

Traffic Analysis

High-speed web-based traffic analysis and flow collection using ntopng. Persistent traffic statistics in RRD and Influx format. Full historical data to ClickHouse and big data systems. Layer 7 analysis based on nDPI. Identity Management with Firewalls and Active Directory support.

Using ntopng as an Actionable Event-Driven Traffic Analysis Application FOSDEM23

February 6, 2023

Yesterday we have presented at FOSDEM in the network devroom we headed, a talk about ntopng. Below you can find the video of the presentation and the presentation slides. Enjoy !
Introducing ntopng 5.6: New Reports and Cybersecurity Indicators, Kafka, Lua/Python API, Flow Collection Clustering

February 2, 2023

This is to announce the availability of ntopng 5.6 stable release that brings several additions and improvements: We have started to introduce responsiveness in ntopng GUI by means of VueJS. All timeseries and historical pages are now rewritten to take … Continue reading →
Introducing PF_RING 8.4: Zero-Copy Promisc Capture on Virtual Functions

February 1, 2023

This is to announce a new PF_RING release 8.4 ! This stable release adds zero-copy support for a new range of (virtual) adapters from Intel: the iavf-zc driver can be used to capture traffic from i40e (X710/XL710) and ice (E810) … Continue reading →
Welcome to nDPI 4.6: code fuzzing, new protocol and flow risks

February 1, 2023

This is to announce the release of nDPI 4.6 that introduces various improvements with respect to the previous release. Many things changed in this release in terms of number of protocols and robustness thanks to code fuzzing introduced in this … Continue reading →
nProbe 10.2 is Available: Redesigned Kafka Export, nTap and Google Cloud Support

February 1, 2023

Today we announce the availability of nProbe 10.2 that features native nTap support for generating flows from remote devices, and redesigned Kafka support for both flow export and communication with ntopng. With this respect, the new –ntopng <URL> command line … Continue reading →
Using Multitenancy in ntopng

January 30, 2023

Not all ntop users know that ntopng natively implements multitenancy support. Namely you can use ntopng to collect and analyse traffic from multiple users, and show to each user its own traffic, hiding all the rest. All you need to … Continue reading →
Rethinking Flow Visualisation in ntopng

January 26, 2023

For years ntopng has listed flows in a tabular view. Our users are used to it, and over time we have added new features and filtering capabilities. What we have not yet done, is rethink how flows are reported. Reworking … Continue reading →
Scaling Up: How To Collect, Analyse, and Store Flows at Scale (100 Gbit+)

January 18, 2023

Most ntop tools such as nProbe cento and n2disk have been designed to run at high speed (today we consider 100 Gbit a high-speed link). ntopng instead has to perform many activities including behavioral traffic analysis that makes it unable … Continue reading →
Using Python (including Jupyter Notebook) with ntopng

January 11, 2023

Most programmers and network/security administrators are familiar with the Python language. As from time to time we receive requests from our users for creating custom reports, or extracting other type of data (e.g. alerts or timeseries) from ntopng, we have … Continue reading →
HowTo Use Periodic Traffic Analysis in Cybersecurity

January 3, 2023

Since v5 ntopng has the ability to detect periodic activities, i.e. activities that are repeated periodically at a given pace (note that each activity can have a different frequency, and ntopng is able to detect them). Periodic activities are not … Continue reading →

Visualize 360° Web-based Network traffic visibility.

React Get notified about Cyber Incidents.

Protect Make your network a safer place.

Inspect Identify hundreds of L7 protocols.

Get Started! Go to the download page

Packet Capture

Traffic Recording

Network Probe

Traffic Analysis

Using ntopng as an Actionable Event-Driven Traffic Analysis Application FOSDEM23

Introducing ntopng 5.6: New Reports and Cybersecurity Indicators, Kafka, Lua/Python API, Flow Collection Clustering

Introducing PF_RING 8.4: Zero-Copy Promisc Capture on Virtual Functions

Welcome to nDPI 4.6: code fuzzing, new protocol and flow risks

nProbe 10.2 is Available: Redesigned Kafka Export, nTap and Google Cloud Support

Using Multitenancy in ntopng

Rethinking Flow Visualisation in ntopng

Scaling Up: How To Collect, Analyse, and Store Flows at Scale (100 Gbit+)

Using Python (including Jupyter Notebook) with ntopng

HowTo Use Periodic Traffic Analysis in Cybersecurity

Latest Posts

Upcoming Events