Product Information
What is Networkminer?
NetworkMiner is an open-source Network Forensic Analysis Tool (NFAT) for Windows (but also compatible with Linux/Mac OS X/FreeBSD). It functions as a passive network sniffer/packet capture tool, capable of detecting operating systems, sessions, hostnames, open ports, and more without injecting any traffic into the network. NetworkMiner can also parse PCAP files for offline analysis and reconstruct transmitted files and certificates from them. By presenting extracted artifacts in an intuitive user interface, NetworkMiner simplifies advanced Network Traffic Analysis (NTA). The way data is displayed not only makes analysis easier but also saves valuable time for analysts or forensic investigators.
Since its initial release in 2007, NetworkMiner has become a popular tool among incident response teams and law enforcement agencies. Today, it is used by companies and organizations worldwide.
How to use Networkminer?
NetworkMiner is an open-source network forensics analysis tool that acts as a passive network sniffer to capture packets or parse PCAP files for offline analysis, enabling advanced network traffic analysis and saving time.
Core Functions of Networkminer
Portable
Usage Scenarios of Networkminer
- Detect network information like OS, sessions, hostnames, open ports, etc.
- Analyze PCAP files offline.
- Regenerate/reassemble transferred files and certificates from PCAP files.
- Perform advanced network traffic analysis.
- Network forensics for incident response teams.
- Network forensics for law enforcement.
Common Questions about Networkminer
What does NetworkMiner do?
How do I use NetworkMiner?
What are the core features of NetworkMiner?
What are the use cases for NetworkMiner?
