ntop – High Performance Network Monitoring Solutions based on Open Source and Commodity Hardware.

ntopng High-speed web-based traffic analysis.
ntopng Edge Make your network a safer place
nDPI Identify hundreds of L7 protocols.
nProbe Cento 100Gbit NetFlow Probe and Traffic Classifier
Get Started! Go to the download page

Packet Capture

Wire-speed packet capture/transmission using commodity hardware with PF_RING. Zero-Copy packet distribution across threads, applications, Virtual Machines. Libpcap support for seamless integration with legacy applications.

Traffic Recording

10 Gbit and above lossless network traffic recording with n2disk. Industry standard PCAP file format. On-the-fly indexing to quickly retrieve interesting packets using fast-BPF and time interval. Precise traffic replay with disk2n.

Network Probe

nProbe: extensible NetFlow v5/v9/IPFIX probe with plugins support for L7 content inspection. nProbe Cento: up to 100 Gbit NetFlow, traffic classification, and packet shunting for IDS/packet-to-disk acceleration.

Traffic Analysis

High-speed web-based traffic analysis and flow collection using ntopng. Persistent traffic statistics in RRD format. Layer 7 analysis by leveraging on nDPI, an Open Source DPI framework.

System-Introspected Network and Container Visibility: A Quick Start Guide

June 26, 2019

Recently, we have introduced the concept of network and container visibility through system introspection and also demonstrated its feasibility with an opensource library libebpfflow. In other words, by leveraging certain functionalities of the linux operating system, we are able to … Continue reading →
Introducing nProbe Agent: Packetless, System-Introspected Network Visibility

June 21, 2019

A few months ago at FOSDEM we introduced the concept of network and container visibility through system introspection and we released an opensource library based on eBPF that can be used for this scope. Based on this technology, we created a lightweight … Continue reading →
Talking about Network, Service, and Container Monitoring at InfluxDays

June 11, 2019

Later this week the ntop team will attend InfluxDays, June 13-14, London, UK. We’ll be talking about traffic monitoring in containerised environments, and give you an outlook of our roadmap. If you are attending this event (we’ll have a … Continue reading →
Released nProbe Cento 1.8

June 6, 2019

This is to announce the release of nProbe Cento 1.8 stable release. This is a maintenance release where we have made many reliability fixes and added new options to integrate this tool with the latest ntopng developments. We suggest all … Continue reading →
TLS/SSL Analysis: When Encryption and Safety Are Not Alike

May 31, 2019

Most people think that SSL means safety. While this is not a false statement, you should not take it for granted. In fact while your web browser warns you when a certain encrypted communication has issues (for instance them SSL … Continue reading →
Telemetry Data in ntopng: Giving Back to the Community

May 28, 2019

The latest ntopng 3.9 dev gives you the possibility to choose whether to send telemetry data back to ntop. We collect and analyze telemetry data to diagnose ntopng issues and make sure it’s functioning properly. In other words, telemetry data … Continue reading →
Packets vs Flows: Which Option is the Best?

May 18, 2019

One of the most difficult steps on a monitoring deployment scenario is to choose where is the best point where traffic has to be monitored, and what is the best strategy to observe this traffic. The main options are basically: … Continue reading →
ntopConf 2019 Retrospective

May 10, 2019

On May 8-9th we have organised our yearly event, in Padova, Italy. The first day was dedicated to training and the second day to the conference. Overall about 150 people attended the event, and we’re glad of it. Our gratitude … Continue reading →
Monitoring Containerised Application Environments with eBPF

May 2, 2019

Earlier this week ntop and InfluxData held a joint webinar about monitoring containerised applications. We have discussed solution for monitoring both legacy (e.g. non-containerised) and containerised applications, what are the technologies we can use. As most of you know, we have developed … Continue reading →
Detecting Hidden Hosts and Networks on your (shared) LAN

April 6, 2019

In theory on switched networks each portion of a LAN is independent. This means that for instance that network 192.168.1.0/24 and 192.168.2.0/24 are using different switch ports that communicate through a router, and also that are not sharing the same … Continue reading →

ntopng High-speed web-based traffic analysis.

ntopng Edge Make your network a safer place

nDPI Identify hundreds of L7 protocols.

nProbe Cento 100Gbit NetFlow Probe and Traffic Classifier

Get Started! Go to the download page

Packet Capture

Traffic Recording

Network Probe

Traffic Analysis

System-Introspected Network and Container Visibility: A Quick Start Guide

Introducing nProbe Agent: Packetless, System-Introspected Network Visibility

Talking about Network, Service, and Container Monitoring at InfluxDays

Released nProbe Cento 1.8

TLS/SSL Analysis: When Encryption and Safety Are Not Alike

Telemetry Data in ntopng: Giving Back to the Community

Packets vs Flows: Which Option is the Best?

ntopConf 2019 Retrospective

Monitoring Containerised Application Environments with eBPF

Detecting Hidden Hosts and Networks on your (shared) LAN

Latest Posts

Upcoming Events