Alternatives to nChronos
Compare nChronos alternatives for your business or organization using the curated list below. SourceForge ranks the best alternatives to nChronos in 2026. Compare features, ratings, user reviews, pricing, and more from nChronos competitors and alternatives in order to make an informed decision for your business.
-
1
Obkio
Obkio
Network Performance Monitoring Made Easy. Obkio is a simple Network Monitoring and Troubleshooting SaaS solution that allows users to continuously monitor the health of their network and core business applications to improve the end-user experience. The innovative software application identifies the causes of intermittent network, VoIP, video, and applications slowdown in seconds and collect information to quickly troubleshoot problems before they affect your end-users. Deploy network monitoring Agents at strategic locations in a company's offices or network destinations such as data sites, remote sites, external client sites, or public or private clouds to continuously monitor performance using synthetic traffic exchanged every 500ms. Obkio's Agents give you a 360-degree overview of your network by measuring the network metrics like matter most (jitter, latency, packet loss, VoIP quality), and alerting you of any performance degradation.Starting Price: $399 per month -
2
SolarWinds Network Bandwidth Analyzer Pack
SolarWinds
Comprehensive network bandwidth analysis and performance monitoring. Detect, diagnose, and resolve network performance issues. Track response time, availability, and uptime of routers, switches, and other SNMP-enabled devices. Monitor and analyze network bandwidth performance and traffic patterns. Find bandwidth hogs on a network and see which applications are using the most bandwidth. View visual hop-by-hop analysis for devices along the delivery path with NetPath. Enterprise Command Center. Reduce network outages and quickly detect, diagnose, and resolve multi-vendor network performance issues with affordable, easy-to-use network monitoring software. -
3
LiveWire
BlueCat
LiveWire is a high-performance network packet-capture and forensic-analysis platform that captures and stores detailed packet data across physical, virtual, on-premises, and cloud networks. It is designed to give Network-Ops and Security teams deep visibility into network traffic, from data centers to SD-WAN edges, remote sites, and cloud environments, filling in the blind spots left by telemetry-only monitoring. LiveWire delivers real-time packet capture that can be selectively stored and analyzed with advanced workflows, visualizations, and correlation tools; it can automatically detect encrypted traffic and store only what’s needed (headers or metadata), saving disk space while preserving forensics data. It supports “intelligent packet capture,” converting packet-level data into enriched flow-based metadata (called LiveFlow), which can feed into the companion monitoring platform BlueCat LiveNX. -
4
Chrono Platform
Chrono Platform
Chrono Platform is an engineering-intelligence and automated time-tracking solution that integrates with the tools your team already uses, like Jira, Slack, Azure DevOps, Asana, Google Calendar, Teams, and others, to passively capture, categorize, and analyze work without requiring manual timesheet entries. Once connected, Chrono automatically ingests data such as commits, ticket activity, calendar events, and communication logs, then applies AI-powered categorization to convert that activity into normalized time entries tied to the correct project, task, or activity. On top of raw time tracking, Chrono surfaces high-level insights for engineering leaders: it offers real-time project tracking, resource allocation and budget monitoring, risk and delay detection, and ROI-driven visibility into how engineering time translates into business value.Starting Price: $2,000 per claim -
5
ChronoScan
Digital File
Virtually improve every data capture need you have with the multitude of features that comprise ChronoScan. Built on a server-client infrastructure ChronoScan Enterprise can be used to process a very wide range of different documents and partially or fully automate your workflow. The windows service architecture gives the flexibility and the power to the system administrator. The thin client interface can be accessed from any web browser and from anywhere, anytime. It gives the user all the power of ChronoScan without the need for extra software installation. Select the desired notifications and email lists for each Job and keep everyone notified. ChronoScan Enterprise includes a scanner plugin that will allow any client machine to scan directly into the program using a local scanner. Helps you with data Entry with OCR & Assisted auto fields. Extract text from PDF Files and convert to indexed data. Upload documents to the Cloud.Starting Price: €245 one-time payment -
6
ChronoSync
Econ Technologies
ChronoSync is a complete, all-in-one solution for file syncs, backups, bootable backups, and cloud storage for your Mac. In use by thousands of photographers, video editors, filmmakers, musicians, and other data professionals. It’s simply the best way to backup and syncs your Mac. No other app can compare! Whatever your backup and sync scenario, ChronoSync has got you covered! Synchronization makes two sets of files identical to each other. A classic example is having a desktop computer in the office and a laptop for your travels. You would sync your documents before leaving and again when you return. ChronoSync excels at this task! A backup creates redundant copies of your files to protect against data loss. Backups to external hard drives and archiving old data are a must. For added redundancy, backup to remote devices and even the cloud. ChronoSync can handle all this and more!Starting Price: $49.99 one-time payment -
7
Azure Network Watcher
Microsoft
Monitor and diagnose networking issues without logging in to your virtual machines (VMs) using Network Watcher. Trigger packet capture by setting alerts, and gain access to real-time performance information at the packet level. When you see an issue, you can investigate in detail for better diagnoses. Build a deeper understanding of your network traffic pattern using network security group flow logs and virtual network flow logs. Information provided by flow logs helps you gather data for compliance, auditing and monitoring your network security profile. Network Watcher provides you the ability to diagnose your most common VPN gateway and connections issues. Allowing you, not only, to identify the issue but also to use the detailed logs created to help further investigate.Starting Price: $0.50 per GB -
8
Quasima Chrono Tracker
Quasima Software
Chrono Tracker is a time tracking application for Windows desktop. It allows you to keep track of multiple projects and categorize how much time you spent working on each of them. Chrono Tracker allows you to organize your projects into a hierarchical structure that resembles layout of folders on a disk. You can add, delete, and sort projects so that they best represent your business activity. Every single piece of time you spent working on a project (called here a task) is registered and saved in relation to that project. Usually tasks are registered while you are working, but you can also add them later. Chrono Tracker does not limit how many projects or tasks you can create. The application is designed to handle smoothly hundreds of projects and thousands of tasks. -
9
DrChrono
DrChrono
Increase the efficiency of your medical practice with an all-in-one practice management, electronic health records, and medical billing platform from DrChrono. With its modern and simple interface and dozens of advanced features, DrChrono empowers medical practitioners to better serve their patients. Users can easily schedule patient appointments, check and edit patient charts, and manage billing with ease. -
10
Chronos
Chronos
Chronos Time Tracking is a project-management and time-tracking app that helps freelancers and small business owners effortlessly track time, expenses, payments, and client billing against projects. It offers a “smart timer” or manual time entries, with smart notifications to avoid leaving the timer running accidentally, and lets you view total time logged, expenses incurred, and client payments owed at a glance. Chronos retains a full history of every project, including time entries, expenses, payments, and notes, and makes it easy to browse, edit, or review past projects. Its “Smart Estimates” feature analyzes how long previous jobs took and helps quote new jobs more accurately, reducing underquoting and helping increase revenue. Chronos also provides profit-and-loss reporting (overall or by project type) and accounts receivable reports so you can track which clients still owe you money.Starting Price: $9 per month -
11
TX Chrono
TeamExpand
TX CHRONO is the first-time tracking tool that is both perfect for managers and easy for employees. Should you require an extension to the standard TX Chrono capabilities, TeamExpand will deliver the additional functionality to fully meet your business. Whenever you face a technical challenge when installing, configuring, or operating TX Chrono, the TeamExpand team of technical professionals will investigate your situation and provide you with a competent solution. It allows to track time on Work Items directly from TFS or VSTS fields, keep records for non-coding tasks, submit, approve and analyze timesheet submissions, create reports, and use custom notifications. Keep TFS/VSTS data accurate, up-to-date and 100% consistent with time sheets. Run time reports by Users, Projects over a custom date range. Available as a web-based tool. Integrated with TFS & VSTS. Projects and WIs are populated from TFS. Most user-friendly grid for weekly time input.Starting Price: $3 per month -
12
Trisul Network Analytics
Trisul Network Analytics
In today's bandwidth unconstrained, encrypted, cloud-centric networks you can no longer separate traffic analytics from security and investigation activities. Trisul helps organizations of all sizes deploy full-spectrum deep network monitoring which can serve as a single goto source of truth for performance monitoring, network design, security analytics, threat detection, and compliance. Traditional approaches based on SNMP, Netflow, Agents, or Packet Capture have a narrow focus and rigid vendor-supplied analytics. Trisul is the only platform that provides a rich and open platform you can innovate upon. Includes a tightly integrated backend datastore and a web UI. Yet, open enough to plug into a different backend or to drive Kibana, Grafana UIs. Our design goal is to pack as much performance as we can in a single node. For larger networks scale out by adding more probes and hubs.Starting Price: $950 one-time payment -
13
Airtool 2
Intuitibits
Capture Wi-Fi traffic using your Mac’s adapter or Zigbee and BLE traffic using compatible USB dongles and automatically launch Wireshark for post-processing and analysis. Offers several flexible configuration options to accommodate the capture requirements of any packet analysis and troubleshooting task. Integrates with popular cloud services such as CloudShark and Packets to automatically upload, analyze, or share your captures. Capturing Wi-Fi traffic is an essential task of protocol analysis. Whether you’re trying to resolve Wi-Fi connectivity, roaming or configuration problems, analyzing your Wi-Fi network’s performance, you will certainly need to perform packet captures. Airtool lets you capture Wi-Fi packets in the easiest way possible. With advanced features such as automatic packet slicing and capture file limits and rotation, Airtool is a must-have tool for every wireless LAN professional.Starting Price: $36.61 one-time payment -
14
CommView
TamoSoft
CommView is a powerful network monitor and analyzer designed for LAN administrators, security professionals, network programmers, home users…virtually anyone who wants a full picture of the traffic flowing through a PC or LAN segment. Loaded with many user-friendly features, CommView combines performance and flexibility with an ease of use unmatched in the industry. This application captures every packet on the wire to display important information such as a list of packets and network connections, vital statistics, protocol distribution charts, and so on. You can examine, save, filter, import and export captured packets, view protocol decodes down to the lowest layer with full analysis of over 100 supported protocols. With this information, CommView can help you pinpoint network problems and troubleshoot software and hardware. The newest CommView version 7.0 introduced SSL/TLS traffic decryption on the fly. -
15
Capsa
Colasoft
Capsa, a portable network performance analysis and diagnostics tool, provides tremendously powerful and comprehensive packet capture and analysis solution with an easy to use interface allowing both veteran and novice users the ability to protect and monitor networks in a critical business environment. Capsa aids in keeping you assessed of threats that may cause significant business outage. Capsa is a portable network analyzer application for both LANs and WLANs which performs real-time packet capturing capability, 24x7 network monitoring, advanced protocol analysis, in-depth packet decoding, and automatic expert diagnosis. Capsa's comprehensive high-level window view of entire network, gives quick insight to network administrators or network engineers allowing them to rapidly pinpoint and resolve application problems. With the most user-friendly interface and the most powerful data packet capture and analysis engine in the industry, Capsa is a necessary tool for network monitoring. -
16
tcpdump
tcpdump
Tcpdump is a powerful command-line packet analyzer that allows users to display the contents of network packets transmitted or received over a network to which the computer is attached. It operates on most Unix-like systems, including Linux, Solaris, FreeBSD, NetBSD, OpenBSD, and macOS, utilizing the libpcap library for network traffic capture. Tcpdump can read packets from a network interface card or from a previously created saved packet file, and it provides options to write packets to standard output or a file. Users can apply BPF-based filters to limit the number of packets processed, enhancing usability on networks with high traffic volumes. The tool is distributed under the BSD license, making it free software. In many operating systems tcpdump is available as a native package or port, which simplifies installation of updates and long-term maintenance.Starting Price: Free -
17
Omnis Cyber Intelligence
NETSCOUT
Omnis CyberStream and Omnis Cyber Intelligence form NETSCOUT’s advanced Network Detection and Response (NDR) platform built on deep packet inspection. The platform delivers pervasive, packet-level visibility to eliminate blind spots across data centers, cloud environments, remote users, and network edges. By combining real-time adaptive threat detection with continuous packet capture, it enables faster and more accurate incident response. Omnis Cyber Intelligence identifies and prioritizes threats at the source using layered machine learning, threat intelligence, and deterministic analysis. Always-on packet and metadata collection ensures security teams have full context before, during, and after an incident. Integrated investigation workflows reduce alert noise and shorten the gap between detection and response. The platform empowers SOC teams to investigate, respond, and prevent threats with confidence and precision. -
18
CloudShark
QA Cafe
CloudShark is a secure solution that enables network and security teams to organize, analyze, and collaborate on packet captures. Designed for network operators, security specialists, and IT departments. CloudShark makes it possible to share more easily, communicate better, and solve network problems faster. CloudShark is deployed on-premise or in the cloud. CloudShark combines all of the analysis capabilities of Wireshark, Zeek, Suricata IDS, and more into a single solution that enables your team to solve problems faster by eliminating duplicate work and streamlining investigations and reporting. CloudShark is brought to you by QA Cafe, a dynamic software company composed of experts in networking, consumer electronics, and security. We develop industry-leading network device test solutions and network analysis tools for business use while providing our customers with world-class support.Starting Price: $4,500 per year -
19
ZetesChronos
Zetes FasTrace
Every day millions of deliveries are efficiently made using ZetesChronos. ZetesChronos is an electronic proof of delivery software which helps control and improve your collection, delivery and related management processes. It connects your drivers, back-office workers and logistics management and gives you real-time visibility on goods, vehicles and returnable assets so you can ensure the perfect delivery, every time and offer your customers visibility on the status of their shipments. Using the mobile proof of delivery application, your drivers are guided precisely throughout the process registering all events during loading, delivery and collection. Information is relayed in real-time with the host system and back-office. Track & trace and reporting modules provide insights for both customers and management. From managing customer expectations and reducing operational costs, through to meeting greater regulatory compliance, the proof of delivery software has many benefits. -
20
Wyebot
Wyebot
Wyebot provides client-side visibility and testing for your business-critical WiFi networks through intelligent sensors and agents that simulate an expert WiFi engineer on-site—delivering insights that traditional infrastructure monitoring can't deliver. Our cloud-based platform provides 360-degree visibility across your entire network, from wireless to wired connections, client devices to access points. This comprehensive visibility captures both intermittent and critical issues, and identifies whether issues stem from the back-end network infrastructure itself or other sources, eliminating cross-team finger-pointing and accelerating resolution. Our AI-powered engine automatically detects issues and recommends specific solutions, while detailed historical data, including full packet captures, enables rapid problem resolution without costly site visits.Starting Price: Varies by quantity and term -
21
ChronoTrack Race Registration
ChronoTrack
Meet the demand for increased services in the industry and eliminate the costly struggle of combining various software solutions by selecting ChronoTrack as your one-stop-shop. From Registration to Celebration, we’ve got you covered! As the gatekeeper of all things Race Day, ChronoTrack is the only Timing Company in the world that can deliver a non-replicable, flourishing event and membership experience for Athletes, Timers, Race Directors and Spectators. We take the guesswork out of Registration, Scoring and Results and focus on the integration of all your race day needs, all within one platform. As a Timer we offer you Industry-leading hardware trusted by some of the most high profile events across the globe. Our Event Dashboard takes event management to a whole new level of accuracy for the most complex to the most basic event needs. From Registration to Celebration, we provide a seamless turnkey solution for you at every step of your race journey. -
22
ChronoForms
ChronoEngine
The Easiest forms builder to Create any kind of form for your Joomla or WordPress website, and it's FREE. Chronoforms was first released in 2006, currently we have the 6th version and the most amazing one. Build Mobile ready forms with ChronoForms. Easily design your form using the drag and drop form builder and preview how your form looks like before saving the changes. Build multi page forms easily using the advanced ChronoForms form builder. All form fields types are available, text, textarea, password, radios, checkboxes and dropdowns, with many advanced features like AutoCompletion and auto resizing. Read, Add, Update or delete data from one or more database tables, and connect to external database. Send any number of emails, encrypt the emails data if necessary (encryption requires server software), advanced email layout support, customize the email recipients, subject, from data and set CC and BCC addresses.Starting Price: $24.99 one-time payment -
23
Nagios Network Analzyer
Nagios Enterprises
Network Analyzer provides an in-depth look at all network traffic sources and potential security threats allowing system admins to quickly gather high-level information regarding the health of the network as well as highly granular data for complete and thorough network analysis. Network Analyzer provides a central view of your network traffic and bandwidth data as well as potential network compromises. The powerful home dashboard provides an at-a-glance view of critical netflow or sflow data sources, server system metrics, and abnormal network behavior for quick assessment of network health. Users can easily drill down to see specific information on individual IPs, source port, destination port, or any combination thereof. Network Analyzer’s advanced alerting and reporting capabilities provide IT staff with superior awareness of their network. Highly granular, down-to-the-packet data can be accessed and archived for further tracking and analysis.Starting Price: $1995.00 -
24
Symantec Network Forensics
Broadcom
Get complete security visibility, advanced network traffic analysis, and real-time threat detection with enriched, full-packet capture. Symantec Security Analytics, the award-winning Network Traffic Analysis (NTA) and forensics solution is now available on a new hardware platform that offers much higher storage density, deployment flexibility, greater scalability, and cost savings. This new model separates the hardware purchase from the software purchase, enabling you to adopt new enterprise licensing that lets you choose how to deploy the solution: on-premises, as a virtual appliance, or in the cloud. With this latest hardware innovation, you can achieve the same performance and greater storage capacity in up to half the rack space footprint. Security teams can deploy anywhere in their organization and expand or contract their deployment as needed, without having to change licenses. Reduced cost and easier adoption. -
25
Omnipeek
LiveAction
Omnipeek is a network protocol analyzer from LiveAction designed to deliver deep packet analysis and rapid troubleshooting on Windows systems. It captures and analyzes packet data in real time to help identify network, application, and security issues. Omnipeek provides intuitive visualizations that make complex network data easy to understand and act on. The platform records exactly what happened on the network, enabling detailed forensic analysis after incidents occur. Built-in expert analysis automatically detects hundreds of common network problems and triggers alerts when policies are violated. Omnipeek supports voice, video, wireless, and high-speed networks, including multi-gigabit environments. It is designed to significantly reduce mean time to resolution for even the most complex network issues. -
26
Snort
Cisco
Snort is the foremost Open Source Intrusion Prevention System (IPS) in the world. Snort IPS uses a series of rules that help define malicious network activity and uses those rules to find packets that match against them and generates alerts for users. Snort can be deployed inline to stop these packets, as well. Snort has three primary uses: As a packet sniffer like tcpdump, as a packet logger — which is useful for network traffic debugging, or it can be used as a full-blown network intrusion prevention system. Snort can be downloaded and configured for personal and business use alike. Once downloaded and configured, Snort rules are distributed in two sets: The “Community Ruleset” and the “Snort Subscriber Ruleset.” The Snort Subscriber Ruleset is developed, tested, and approved by Cisco Talos. Subscribers to the Snort Subscriber Ruleset will receive the ruleset in real-time as they are released to Cisco customers. -
27
Riverbed Packet Analyzer
Riverbed
Riverbed Packet Analyzer accelerates real-time network packet analysis and reporting of large trace files through an intuitive graphical user interface and a broad selection of pre-defined analysis views. It enables users to quickly identify and troubleshoot complex network and application performance issues down to the bit level, with full integration with Wireshark. By simply dragging and dropping preconfigured analysis views onto a group of virtual interfaces or a packet trace file, users can see results immediately, transforming hours of work into seconds. The tool facilitates the capture and merging of multiple trace files, allowing for precise pinpointing of problems across multiple segments. Additionally, it provides the capability to zoom into a 100-microsecond view of the network to identify utilization spikes or microbursts that can saturate a gigabit network and cause significant issues. -
28
EndaceProbe
Endace
EndaceProbes provide Scalable, Always-On , Hybrid Cloud packet capture that enables SOC, NOC and IT teams to quickly investigate and resolve cybersecurity and network performance issues: * Bring clarity to every incident, alert or issue with an open packet capture platform that integrates with all your commercial, open source or custom-built tools. * See exactly what’s happening on the network so you can investigate and defend against even the toughest security threats. * Capture vital network evidence, so you can quickly resolve Network and Application Performance issues or outages. The EndaceProbe Platform brings tools, teams and workflows together into an integrated ecosystem: * Full Packet Capture data available at your fingertips from all your tools. * Built into existing workflows so teams don’t have to learn more tools. * A powerful open platform to deploy your favorite security or monitoring tools on. -
29
Riverbed AppResponse
Riverbed
As organizations are transforming their environment and growing more distributed, the network becomes even more relevant. Riverbed AppResponse delivers all-in-one packet capture, application analysis, transactional details, and flow export. Specialized application modules provide fine-grained analysis to help you to speed problem identification and resolution. Modular in design, Riverbed AppResponse lets you select the analysis capabilities you need, including network forensics, all TCP and UDP applications and their metrics, web application performance, database analysis, VoIP and video analysis, and Citrix analysis. There’s a saying that packets are the ultimate source of truth. Riverbed AppResponse captures and stores all packets, all the time at one-minute granularity, so the details are always available when you need them. When required, explore the second- and micro-second-level details. -
30
Arkime
Arkime
Arkime is an open source, large-scale, full packet capturing, indexing, and database system designed to augment existing security infrastructure by storing and indexing network traffic in standard PCAP format. It offers full network visibility, facilitating the swift identification and resolution of security and network issues. Security teams gain access to the necessary network visibility data essential for responding to and investigating incidents to expose the full attack scope. Designed to be deployed across multiple clustered systems, Arkime provides the ability to scale to hundreds of gigabits per second. It allows security analysts to respond, reconstruct, investigate, and confirm information about the threats within your network, enabling appropriate responses quickly and precisely. As an open-source platform, Arkime provides users with the benefits of transparency, cost-effectiveness, flexibility, and community support.Starting Price: Free -
31
ChronoBeans
17NorthSolutions
Use multiple timers while you work or manual time entries later. All-time entries include a field to record project notes. And - your notes get organized in a separate log with your invoice - very professional! Great for recording billable hours on non-computer activities and for time not captured using a timer! If you need to edit a time entry or add an expense after previewing - no problem. ChronoBeans is easy to use. Confirm date range, time entries and expense items - then press Build. Tracks time your way - using timers while you work or entering time after you work. Generate work reports organized by client, project, and date. Keep all client and financial data local on your computer with push-button backup.Starting Price: $5 per month -
32
EtherApe
EtherApe
EtherApe is a graphical network monitor for Unix systems, modeled after Etherman, that displays network activity graphically, with hosts and links changing in size based on traffic volume and color-coded protocols. It supports various devices, including FDDI, ISDN, PPP, SLIP, and WLAN, as well as several encapsulation formats. Users can filter displayed traffic and capture data live from the network or read from a file. Node statistics can be exported for further analysis. The tool offers link layer, IP, and TCP modes, allowing users to focus on specific protocol stack levels. It provides detailed information on each node and link, including protocol breakdown and traffic statistics. EtherApe is open source software released under the GNU General Public License. A single node can be centered on the display and several user-chosen nodes can be arranged in an inner circle with other nodes around. An alternative display mode arranges nodes in "columns".Starting Price: Free -
33
ntopng
NTOP
ntopng is the next generation version of the original ntop, a network traffic probe that monitors network usage. ntopng is based on libpcap/PF_RING and it has been written in a portable way in order to virtually run on every Unix platform, MacOS and on Windows as well. Produce long-term reports for several network metrics including throughput and L7 application protocols. Monitor and report live throughput, network and application latencies, Round Trip Time (RTT), TCP statistics (retransmissions, out-of-order packets, packet lost), and bytes and packets transmitted. Discover Layer-7 application protocols (Facebook, YouTube, BitTorrent, etc) by leveraging on nDPI, ntop Deep Packet Inspection (DPI) technology. Behavioral traffic analyses such as lateral movements and periodic traffic detection. -
34
Corvil Analytics
Pico
The Intelligence Hub is a real-time trade analytics solution that models and correlates client trading behavior, plant performance and venue counterparty execution to enable proactive business management and operations. Corvil is an open data system providing API access to all analytics, trading and market data messages and the underlying packets. The Streaming Data API supports a growing library of Corvil Connectors enabling streaming Corvil data directly from the network packets into your chosen big data solution. Corvil Center provides a single point of access to all analytics and reporting with a couple of clicks to visualize any of the petabytes of granular packet data captured by Corvil. Corvil Instrumentation offers superior price/performance packet analysis and capture Appliances, software defined packet sniffers (Corvil Sensor) to extend the reach to virtual and cloud environments, and the Corvil AppAgent for internal multi-hop software instrumentation. -
35
Telesoft CERNE
Telesoft
With the rise in the global datasphere only set to accelerate with the advances in IoT and 5G technology, the cyber threat landscape will also continue to grow. Our intrusion detection system, the CERNE, helps protect, secure and guard our customers from attack. The CERNE provides real-time monitoring and historical intrusion detection capabilities helping security analysts detect intrusions, identify suspicious activity and monitor network security by storing IDS alert traffic while reducing unnecessary storage. The Telesoft CERNE combines a high rate 100Gbps IDS engine with an automated record of relevant network traffic for real-time and historical threat investigation and digital forensics. CERNE continuously scans and captures network packets and only stores traffic associated with an IDS alert, discarding all other traffic, giving an analyst rapid access to critical packets up to 2.4 seconds before an event. -
36
Core Network Insight
Core Security (Fortra)
Instead of monitoring specific assets or the network itself, these security solutions constantly watch network traffic, creating a picture of what normal traffic patterns look like. With a baseline developed, NTA tools can then flag traffic abnormalities as possible security threats. Though there are multiple approaches to this, NTA tools should have some degree of analysis of anomalies to determine whether it’s a harmless abnormality, or a true threat. With network traffic monitoring, Network Insight observes device behavior in real time. It is continually capturing and correlating evidence using multiple detection engines to arrive at a verdict of "suspected" or "infected." The Case Analyzer, a context aware network traffic analysis and threat intelligence engine, confirms the infection, and a series of risk profilers assess and prioritize the infection based on the determined risk level. -
37
Junos Traffic Vision
Juniper Networks
Junos Traffic Vision is a licensed traffic sampling application for MX Series 3D Universal Edge Routers. It provides details on network traffic flows that is useful for a wide variety of operations and planning activities. Junos Traffic Vision monitors packets as they are processed by the router, and captures details such as source and destination addresses, packet and byte count information. These details are aggregated and exported in a standards-based format for analysis and presentation by Juniper and third-party-based tools that support usage-based accounting, traffic profiling, traffic engineering, attack and intrusion detection, and SLA monitoring. Implemented inline and on service cards that provide high performance and scale, Junos Traffic Vision can be deployed in both active and passive configurations and can take place alongside lawful intercept filtering and port mirroring without impacting performance. -
38
Booz Allen MDR
Booz Allen Hamilton
Protect your network with complete visibility and layered detection. Our customized managed detection and response (MDR) service gives you advanced threat detection, investigation, and response delivered via out-of-band network sensors which provide full visibility to network communications. We focus on malicious activity happening inside and around your environment to protect you from known and unknown threats. Receive instant detection using full packet capture, blended detection tools, SSL decryption, and the advantages of Booz Allen’s Cyber Threat Intelligence service. Industry-leading threat analysts will investigate and contain your network’s security events, giving you more accurate and applicable intelligence. The Booz Allen team provides threat investigation services, contextual intelligence, reverse engineering, and the ability to write rules and custom signatures to stop attacks in real time. -
39
Sniffnet
Sniffnet
Sniffnet is a network monitoring tool designed to help users easily keep track of their Internet traffic. Whether gathering statistics or inspecting in-depth network activities, Sniffnet provides comprehensive coverage. It emphasizes user experience, ensuring ease of use compared to other cumbersome network analyzers. Completely free and open source, Sniffnet is dual-licensed under MIT or Apache-2.0, with the full source code available on GitHub. Developed entirely in Rust, it leverages this modern programming language to build efficient and reliable software, emphasizing performance and safety. Key features include selecting a network adapter to inspect, applying filters to observed traffic, viewing overall statistics and real-time charts of Internet traffic, exporting comprehensive capture reports as PCAP files, identifying over 6,000 upper-layer services, protocols, trojans, and worms, discovering domain names and ASNs of hosts, pinpointing connections in the local network.Starting Price: Free -
40
PaleoScan
Eliis
PaleoScan is a seismic interpretation software based on a semi-automated approach that produces chrono-stratigraphically consistent geological models. This unique technology, patented in 2009, allows our clients to accelerate their seismic interpretation cycle, scan the subsurface in real time to focus on high-potential areas, and identify hydrocarbon accumulation or CO2 storage areas. Another significant advantage of PaleoScan is its ability to produce a 3D geological model of the entire seismic cube, which allows the visualization and interpretation of the geological reservoirs as well as the overlying layers up to the seabed, in order to establish a reliable ranking of the storage reservoirs, taking into consideration the risks inherent to gas injection. At the confluence of powerful algorithms, computational power, and data analysis, our revolutionary technology pushes your seismic interpretation to an unprecedented level. -
41
Jolata
Jolata
Jolata can monitor every packet at microsecond granularity and correlate at millisecond intervals. Jolata can process every packet and visualize the results within seconds on its beautiful, easy-to-use UI. Jolata can analyze every packet and flow, at any location across a nationwide network. Customers lack precise visibility into their network, making it difficult to pinpoint the exact source of performance degradation. Jolata provides segment-by-segment metrics, in real-time with actual network traffic. Customers need to evaluate vendor equipment to ensure equipment will meet performance claims. Jolata provides ability to compare equipments with actual traffic loads. Customers need to future-proof their network due to traffic mix change. Jolata enables operators to confirm whether current infrastucture will meet future expectations. -
42
NetworkMiner
Netresec
NetworkMiner is a network forensics tool that extracts artifacts such as files, images, emails, and passwords from captured network traffic in PCAP files. It can also capture live network traffic by sniffing a network interface. Detailed information about each IP address in the analyzed network traffic is aggregated into a network host inventory, which can be used for passive asset discovery and to get an overview of communicating devices. NetworkMiner is primarily designed to run on Windows but can also be used on Linux. Since its first release in 2007, it has become a popular tool among incident response teams and law enforcement and is used by companies and organizations worldwide.Starting Price: $1,300 one-time payment -
43
MixMode
MixMode
Unparalleled network visibility, automated threat detection, and comprehensive network investigation powered by Unsupervised Third-wave AI. MixMode's Network Security Monitoring platform provides comprehensive visibility allowing users to easily identify threats in real time with Full Packet Capture and Metadata for longer term storage. Intuitive UI and easy to use query language help any security analyst perform deep investigations and understand the full lifecycle of threats and network anomalies. Using our best-in-class Third-Wave AI, MixMode intelligently identifies Zero-Day Attacks in real time by understanding normal network behavior and intelligently surfacing any anomalous activity outside of the norm. Developed for projects at DARPA and the DoD, MixMode's Third-Wave AI needs no human training and can baseline your network in only 7 days, enabling 95% alert precision and reduction and identification of zero-day attacks. -
44
StreamGroomer
Streamcore
StreamGroomers monitor and regulate the traffic across Wide Area Networks (WAN). StreamGroomers integrate transparently, regardless of network architecture, between the LAN and WAN access router and are administered via an out-of-band management network. Continuous service is ensured using high-availability architectures. StreamGroomers analyze network traffic at wire speed, collecting comprehensive measurements and packet data at distributed points in your network. Indicators are calculated from this data in real-time to show current network performance. This data is aggregated and sent to a central repository with minimal network overhead, enabling fast drill down analysis and troubleshooting as well as providing detailed records for forensics. The StreamGroomer’s Deep Packet Inspection analyzes Layer 2-7 packet data to identify applications and user sessions against a predefined catalog of 400+ services. -
45
Fiddler
Progress Software
Capture all HTTP(S) traffic between your computer and the Internet with Telerik Fiddler HTTP(S) proxy. Inspect traffic, set breakpoints, and fiddle with requests & responses. Fiddler Everywhere is a web debugging proxy for macOS, Windows, and Linux. Capture, inspect, monitor all HTTP(S) traffic between your computer and the Internet, mock requests, and diagnose network issues. Fiddler Everywhere can be used for any browser, application, process. Debug traffic from macOS, Windows, or Linux systems and iOS or Android mobile devices. Ensure the proper cookies, headers, and cache directives are transferred between the client and server. Supports any framework, including .NET, Java, Ruby, etc. Mock or modify requests and responses on any website. It’s a quick and easy way to change the request and responses to test websites without changing code. Use Fiddler Everywhere to log all HTTP/S traffic between your computer and the Internet.Starting Price: $12 per user per month -
46
WireX Systems
WireX Systems
Powerful central hub to streamline the entire investigation and response processes and to accelerate knowledge sharing across team members. The framework includes integration points with the various SIEM vendors to import tickets details (as well as export them back at the end of the process) investigation management system, playbook modeling capabilities, as well as enrichment tools like Sandbox technologies, IP and host reputation, geo-location and other threat feeds. Contextual Capture™ provides the world’s largest organizations the technology foundation to collect and automatically analyze network data for security investigations. Using the WireX Systems Contextual Capture ™ technology you can break through the limitations of full packet capture, store payload level information for periods of months and remove the complexities of sifting through the packets in order to “glue” them back together. -
47
ARIA SDS Packet Intelligence
ARIA Cybersecurity Solutions
The ARIA Packet Intelligence (PI) application gives OEMs, service providers, and security professionals a better way to use SmartNIC technology to support two important use cases: advanced packet-level network analytics and cyber-threat detection, response, and containment. Network analytics: ARIA PI provides complete visibility into all network traffic and feeds valuable analytics data to packet delivery accounting tools, quality of service systems, and SLA monitoring applications. All of this helps companies provide better service and maximize revenues tied to usage-based billing. Cyber-threat detection, response, and containment: ARIA PI also feeds metadata to threat detection tools for complete visibility into all network traffic, including east-west data flows. This improves the effectiveness of existing security solutions, such as SIEMs and IDS/IPS tools, and gives security teams a better way to detect, respond, contain, and remediate even the most advanced cyber threats. -
48
Noction IRP
Noction
Noction IRP is an edge-deployed BGP optimization platform that analyzes traffic in real-time to detect congestion, link failures, and performance degradation. The system continuously probes network routes across all available providers, measuring latency, packet loss, and historical reliability to identify the best paths for both inbound and outbound traffic. IRP manages ingress and egress bandwidth intelligently, distributing traffic flows across providers to minimize costs while maintaining quality of service. The platform automatically reroutes traffic when the thresholds are reached, ensuring optimal delivery for all traffic types. Built-in Automatic Anomaly Detection (AAD) provides DDoS protection by analyzing traffic behavior and identifying deviations from established baselines. AAD detects volumetric floods, amplification attacks, TCP SYN floods, and application-layer threats, then executes mitigation automatically using BGP FlowSpec and RTBH mechanisms. -
49
Xplico
Xplico
Xplico is installed in the major distributions of digital forensics and penetration testing: Kali Linix, BackTrack, DEFT, Security Onion, Matriux, BackBox, CERT Forensics Tools, Pentoo and CERT-Toolkit. Xplico allows concurrent access by multiple users. Any user can manage one or more Cases. The UI is a Web User Interface and its backend DB can be SQLite, MySQL or PostgreSQL. Xplico can be used as a Cloud Network Forensic Analysis Tool. The goal of Xplico is extract from an internet traffic capture the applications data contained. For example, from a pcap file Xplico extracts each email (POP, IMAP, and SMTP protocols), all HTTP contents, each VoIP call (SIP), FTP, TFTP, and so on. Xplico isn’t a network protocol analyzer. Xplico is an open source Network Forensic Analysis Tool (NFAT). At each data reassembled by Xplico is associated a XML file that uniquely identifies the flows and the pcap containing the data reassembled. -
50
NETSCOUT vSTREAM
NETSCOUT
Visibility for performance management, user experience, and cybersecurity in virtualized environments. NETSCOUT's vSTREAM virtual appliance complements existing Adaptive Session Intelligence (ASI)-based instrumentation to provide the same smart data visibility within virtualized and cloud infrastructures that are already possible in physical environments. The vSTREAM is ideal for monitoring service-critical traffic running within virtualized and/or cloud infrastructures. With deep packet inspection at scale, organizations have the end-through-end visibility needed to assure network and application performance and high-quality user experiences in virtual environments. Leverage end-through-end visibility across data centers, multi-cloud, and remote offices to assure high-quality user experiences anywhere. Scalable and simplified packet-data visibility and analysis is easy to deploy, manage, and fit into your organization’s budget.
