Network Tools

Send ICMP echo requests and report RTT and packet loss.

Load a URL in headless Chromium via Playwright and stream every fetched resource with size and timing.

Trace the path packets take to a destination host, hop by hop.

Continuous traceroute with per-hop loss and RTT statistics.

Ping many hosts in parallel and report which are alive.

Send any HTTP method with custom headers and body; inspect the full response.

Fetch a URL over HTTP/HTTPS, following redirects.

Check TCP port reachability; optionally send a payload and read the reply.

Inspect a server's TLS handshake: version, cipher, ALPN, full cert chain.

Probe a list of hostnames (max 16) for HTTP and HTTPS availability.

HTTP benchmark with N requests at concurrency C.

Multi-threaded HTTP benchmarking tool.

HTTP load generator with configurable request rate.

HTTP load tester with concurrent virtual users.

TCP/UDP throughput, jitter, and loss measurement.

TCP/UDP throughput and request/response latency benchmarks.

Bidirectional data relay between any two endpoints.

Full DNS query with answer, authority, and additional sections.

Simple forward and reverse DNS lookups.

Concise single-line DNS lookups.

DNS lookups with DNSSEC validation status.

Look up domain registration, IP allocation, or ASN ownership.

Capture and decode live network packets on an interface.

Wireshark's CLI packet capture and protocol decoder.

Wireshark's lightweight packet capture daemon.

Match regular expressions against live packet payloads.

High-performance zero-copy packet capture and replay.

Polite TCP-connect port scan of a single public host (max 128 ports) with optional banner grab.

Asynchronous TCP scanner capable of millions of packets per second.

Single-packet internet-wide network scanner.

Fast port scanner that pipes results into Nmap.

ProjectDiscovery's fast SYN/CONNECT port scanner.

Asynchronous stateless TCP/UDP scanner.

Break a CIDR into network, broadcast, mask, wildcard, and usable host range.

Verbose subnet calculator with address classification flags.

Look up the announcing ASN, covering prefix, country, and AS neighbours for a public IP via RIPEstat.

Parse MRT-format BGP routing table dumps from route collectors.

Generate router filter configs from IRR data.

Modern successor to bgpq3 — emits router prefix-list / AS-path filters.

Probe which TLS protocol versions a server accepts and show the cipher each negotiates.

Full chain validation, OCSP stapling, SCT count, and per-TLS-version cipher matrix.

In-depth bash-based TLS audit suite.

Web server vulnerability scanner.

Consolidated MX, SPF, DMARC, and DKIM-selector lookup for an email domain.

Connect to an SMTP server, capture its banner + EHLO capabilities, and test STARTTLS.

Server-side mail submission and queue interface.

Show the local mail queue.

Postfix mail-queue inspection and flush.

Send mail from the command line.

Send a test email through an SMTP server.

Query a public NTP server: stratum, offset, round-trip, ref-id, root delay/dispersion. Does not change the system clock.

Standard query/control interface for ntpd.

Chrony's runtime control and statistics CLI.

One-shot NTP client that sets the system clock.

Fetch a server's SSH version banner and host public keys (Ed25519, ECDSA, RSA) with fingerprints. No authentication.

Interactive Secure Shell login to a remote host.

Interactive file transfer over SSH.

Copy files over SSH.

Install a public key into ~/.ssh/authorized_keys on a remote host.

Query a hostname against six public resolvers in parallel; reveals geo-DNS, anycast, and split-horizon behavior.

Sustained-load DNS performance benchmarking tool.

Ramps DNS query rate until a resolver loses packets.

Negotiate HTTP/2 via ALPN and decode the server's SETTINGS frame (window size, max streams, etc.).

Send a WebSocket Upgrade handshake and verify the Sec-WebSocket-Accept response, subprotocols, and extensions.

HTTP/2 load benchmarking tool from nghttp2.