goflow
picosnitch
goflow | picosnitch | |
---|---|---|
6 | 33 | |
825 | 586 | |
1.8% | - | |
2.5 | 8.6 | |
about 2 months ago | 4 months ago | |
Go | Python | |
BSD 3-clause "New" or "Revised" License | GNU General Public License v3.0 only |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
goflow
-
Integrating Cisco ASR with Splunk without Splunk Stream.
I would greatly appreciate insights and recommendations from those who have experience in this area. Additionally, I'm interested in hearing your opinions on the best tool for this task: nProbe or goflow? Your rationale behind your recommendation would be invaluable.
-
Sflow/netflow platform with ArubaOS-CX
All in one platform would be preferred, but Docker could sway me to something else. Meaning, I don't want to install a bunch of puzzle pieces to get up and running. GoFlow would be an example here.
- Linux Network Traffic Monitor
-
Netflow Monitoring Software Based on FLOSS
Cloudflare goflow / flow-pipeline
- Large scale flow collection
-
Monitoring 5,000 nodes
For example, for a lot of IDS work, you want to capture netflows if you can. This is something you could do with goflow. Then you can use whatever SIEM/flow analysis tools to figure out what is touching each network location.
picosnitch
-
Linux runtime security agent powered by eBPF
Yep, and from my experience too (made a tool that monitors network traffic with eBPF [1]) in addition to those issues there is also a sizable latency hit.
[1] https://github.com/elesiuta/picosnitch
-
Monitor bandwidth usage with bandwhich (and build a snap package of it)
Similar to bandwhich, I recently created a snap of my own bandwidth monitor, picosnitch [1]. However I was only able to get it working with classic confinement (so it can't be published on the store) due to there being no snap interfaces for fanotify or BPF kfuncs.
I already packaged it for nearly every distro, but unfortunately most don't have dash [2] in their repos so the user needs to install it separately, and I was hoping that snap would be an easier solution for that.
[1] https://github.com/elesiuta/picosnitch/blob/master/snap/snap...
[2] https://repology.org/project/python:dash/versions
-
What kind of applications are missing from the Linux ecosystem?
I created picosnitch which can do this
-
gnome-shell Runaway Bandwidth - More in Comments
If you're still having this issue, you can try picosnitch (I recently made it available in copr).
-
Help identifying which process is sending network requests
You can use picosnitch for this, I'm the developer and this is exactly the use case I had in mind when designing it (24/7 monitoring of traffic on a per executable basis, primarily in containerized environments).
-
Little Snitch Mini
I wrote picosnitch [1] which has the same notification and bandwidth monitoring features, however it doesn't block traffic for a couple reasons: avoiding scope creep so I can focus on more reliable detection and do things like hash every executable, which makes it harder to block traffic in a timely fashion.
https://github.com/elesiuta/picosnitch
-
System monitor that lists network usage for each process
I also wrote a program (picosnitch) which is newer than that list and has a bunch of features none of those other tools have, in case you're interested in checking it out!
-
linux security
which basically says launchpad builds the package directly from that repository, which states: This repository is an import of the Git repository at https://github.com/elesiuta/picosnitch.git.
-
Linux software list. Discussion and advice welcome!
picosnitch - monitors and hashes programs that connect to the internet, and can check them with VirusTotal.
-
What's your goto open source network & bandwidth monitors
For Linux, I created picosnitch which does exactly what you're looking for.
What are some alternatives?
goflow2 - High performance sFlow/IPFIX/NetFlow Collector
opensnitch - OpenSnitch is a GNU/Linux interactive application firewall inspired by Little Snitch.
prometheus - The Prometheus monitoring system and time series database.
vFlow - Enterprise Network Flow Collector (IPFIX, sFlow, Netflow)
ElastiFlow - Network flow analytics (Netflow, sFlow and IPFIX) with the Elastic Stack
flow-pipeline - A set of tools and examples to run a flow-pipeline (sFlow, NetFlow)
How-To-Secure-A-Linux-Server - An evolving how-to guide for securing a Linux server.
conntrack_exporter - Prometheus exporter for tracking network connections
loki - Like Prometheus, but for logs.
nsntrace - Perform network trace of a single process by using network namespaces.