Home page logo


Tcpdump is the network sniffer we all used before (Wireshark) came on the scene, and many of us continue to use it frequently. It may not have the bells and whistles (such as a pretty GUI and parsing logic for hundreds of application protocols) that Wireshark has, but it does the job well and with less security risk. It also requires fewer system resources. While Tcpdump doesn't receive new features often, it is actively maintained to fix bugs and portability problems. It is great for tracking down network problems or monitoring activity. There is a separate Windows port named WinDump. tcpdump is the source of the Libpcap/WinPcap packet capture library, which is used by Nmap and many other tools. For downloads and more information, visit the tcpdump homepage.

Popularity #9, 1
Rating ★★★★ (3)
Latest release 4.7.4
April 22, 2015
(5 years, 5 months ago)


★★★ kavati mahakal

yehhh, the information is awesome.....parat nko taku asa kahi

★★★★★ Luciano

The Ultimate tool of TCP stream capture and inspection. Complimented by tcpflow, tcpdump is a foundation for all and any network packet capturing.

★★★★ 孤独的人

谢谢, 伟大的人

no rating Justin

It is often used in embedded operating systems. For example, Edgewater's voip NOS.

Your comment

Along with your rating, you can use the comment form to post a review, tutorial, tips and tricks, or anything else others will find useful. If you develop this software (or work for the company), please don't rate it. You may leave a clarifying comment as long as you state your affiliation and don't specify a star rating (just leave it as “No rating”).

  (will not be shown, will not be spammed)
(At least 50 characters. No markup is allowed. URLs will be made into links.)
 What is the length of an IPv6 address, in bytes? (antispam)

Feed for updates.


[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]