This is an application that visualizes ethernet traffic in realtime. It leverages Zeek to capture packets and broker messages and then renders traffic flow with Magnum and OpenGL.
The goal of the software is four fold:
- Provide simple visual network diagnostics to resolve configuration issues.
- Demonstrate attacks, information leakage and erroneous devices in local networks and traffic flows.
- Simplify network reconnaissance and manage man-in-the-middle attacks.
- Define network elements symbolically to simplify the explanation and diffusion of knowledge about computer networks.
This software might be useful to you if you:
- Must configure local networks
- Must defend networks
- Penetrate networks
- Make pew pew noises when pinging 8.8.8.8
All reactions to this project including silly questions are appreciated. Open an issue here or contact Nick directly.
The animation below demonstrates the output of Monopticon (v0.3.0) monitoring a local network from a span port. For more examples visit contrib/expirements.
To use Monopticon on your systems you'll need to build and install a few components. The instructions for installing each piece are linked below.
For a detailed description of the architecture of Monopticon read the design document.