Arkime
An open-source, large-scale network packet capture, indexing, and analysis system with a web interface.
What is Arkime?
Arkime is an open-source, large-scale network packet capture and analysis system that stores and indexes network traffic in standard PCAP format. It provides fast, indexed access to network data through a web interface and APIs, enabling security teams to perform network forensics and threat analysis. It was designed to replace commercial full packet capture systems with a more cost-effective, scalable solution.
Security analysts, network engineers, and IT teams who need to capture, store, and analyze large volumes of network traffic for security monitoring, forensics, or troubleshooting.
Developers choose Arkime for its ability to scale to tens of gigabits/sec, its open-source nature allowing full control over deployment and costs, and its compatibility with standard PCAP tools like Wireshark, making it a flexible alternative to proprietary solutions.
Overview
Arkime is an open source, large scale, full packet capturing, indexing, and database system.
Use Cases
Best For
- Large-scale network traffic capture and retention for security analysis
Related Projects
Found a gem we're missing?
Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.
