• Extended Multilanguage Support in ntopng: Korean, Spanish and French

    This is to announce that ntopng now enables users to use a new languages: Korean, Spanish and French.  We have also improved translations of German and Italian. The translation is done using an automatic tool so, we cannot guarantee that the translation is completely correct. Error or typos are accepted as a GitHub issue: please […]

  • ntop and Endian Enter Partnership for Open Source OT Monitoring

    ntop develops monitoring tools for IT and OT networks, whereas Endian is a leading Italian company that develops a Secure Digital Platform for OT networks. Both companies use and develop open source tools that can be a key value in OT networks where most tools are proprietary. This partnership allows both companies to complement each […]

  • You’re Invited to the ntop Community Call: Thu July 18th, 15:00 CET, 9:00 AM EST

    This is to invite you to the next ntop community call that is scheduled for Thu July 18th, 15:00 CET, 9:00 AM EST. The topics we would like to discuss with our community include Planning for the next ntop Conference 2024/25: decide conference location, contents, format and details. Discuss about other potential community meeting (either […]

  • HowTo Use nProbe to Detect and Shape Traffic Using DPI

    Not all the nProbe users know that they can use nProbe not just as a passive monitoring tool, but also for shaping and dropping netwok traffic based on DPI. Ryan Claridge has filled the gap by writing a great article that explains that in detail. Enjoy !  

  • Howto Build a (Cheaper) 100 Gbit Continuous Packet Recorder using Commodity Hardware

    Those who follow this blog probably read a few posts where we described how to build a 100 Gbit continuous packet recorder using n2disk and PF_RING, providing specs for recommended hardware and sample configurations (if you missed them, read part 1, part 2 and part 3). In those posts we recommended the use of FPGA-based adapters […]

  • InfluxDB v2 support in ntopng is Now (partially) Available

    It’s been 3 years since InfluxDB v.2 was released and until a couple of months ago we didn’t plan to add the support to the InfluxDB v.2 due to many reasons: migration from SQL to Flux query language, v2 performance not better than v1. The in the meantime InfluxData release InfluxDB v3 that is currently […]

  • Upcoming Events: CheckMK Conference and Interop Tokio

    In the next couple of weeks we’ll be active in meeting our user community at two events: As you know ntopng is natively integrated with CheckMK. CheckMK Conference that will take place on June 11-13 in Munich, Germany. The ntop team will organize a one-day workshop about ntopng and cybersecurity.  Thanks to our partner for […]

  • ELLIO and ntop partnership: combining cybersecurity with high-speed network traffic analysis

    Prague, Czech Republic / Pisa, Italy, May 29, 2024 – ELLIO, a provider of real-time, highly accurate intelligence for filtering of unwanted network traffic and cybernoise, and ntop, a provider of open-source and commercial high-speed traffic monitoring applications, have announced a partnership to enhance visibility into malicious traffic originating from opportunistic scans and attacks within […]

  • ELLIO for ntopng: HowTo Prevent CyberAccidents Using Blacklists

    Time is one of the main problems in cybersecurity. Detecting issues after they have happened can cost you money and resources to restore the system. Network traffic monitoring tools have as goal to show what is happening on a network.  Traditionally, monitoring protocols such as IPFIX/NetFlow export monitoring data periodically and often limit their analysis […]

  • HowTo Use Cloud Licenses

    As discussed in our spring webinar, it is now possible to use (in beta) cloud licenses with ntopng and nProbe. Contrary to standard licenses that are bound to a physical system (based on the systemId), cloud licenses are “floating” as the same license file can be used on multiple hosts, of course not simultaneously (i.e. […]

Packet Capture

Wire-speed packet capture and transmission using commodity hardware with PF_RING. Zero-Copy packet distribution across threads, applications, Virtual Machines. Libpcap support for seamless integration with legacy applications. Remote capture with nTAP.

Traffic Recording

100 Gbit lossless network traffic recording with n2disk. Industry standard PCAP file format with nanosecond resolution. Layer-7 on-the-fly indexing to quickly retrieve interesting packets using fast-BPF and time interval. Precise traffic replay with disk2n.

Network Probe

NetFlow v5/v9/IPFIX data export and collection with nProbe, an extensible probe with plugins support for L7 content inspection. 100 Gbit NetFlow, traffic classification, and packet shunting for IDS and packet-to-disk acceleration with nProbe Cento.

Traffic Analysis

High-speed web-based traffic analysis and flow collection using ntopng. Persistent traffic statistics in RRD and Influx format. Full historical data to ClickHouse and big data systems. Layer 7 analysis based on nDPI. Identity Management with Firewalls and Active Directory support.