socat is a relay for bidirectional data transfer between two independent data channels---files, pipes, devices, sockets, etc. It can create "listening" sockets, named pipes, and pseudo terminals.

socat can be used, for instance, as TCP port forwarder, as a shell interface to UNIX sockets, IPv6 relay, for redirecting TCP oriented programs to a serial line, to logically connect serial lines on different computers, or to establish a relatively secure environment (su and chroot) for running client or server shell scripts with network connections.

Libproxy handles the details of HTTP/HTTPS proxy configuration for applications across all scenarios. Applications using libproxy only have to specify which proxy to use.

This package provides a multi-threaded TFTP server that implements all options, including all extensions, as specified in RFC 1350, RFC 2090, RFC 2347, RFC 2348, RFC 2349 and RFC7440. Atftpd also supports a multicast protocol known as mtftp, which was defined in the PXE specification.

The server is socket activated by default but supports being started from inetd as well as in daemon mode.

knockd is a port-knock daemon. It listens to all traffic on an ethernet or PPP interface, looking for special "knock" sequences of port-hits (UDP/TCP packets sent to a server port). This port need not be open, since knockd listens at the link-layer level.

UsrSCTP is a portable SCTP userland stack. SCTP is a message oriented, reliable transport protocol with direct support for multihoming that runs on top of IP or UDP, and supports both v4 and v6 versions.

Command line interface for testing internet bandwidth using speedtest.net.

libyang is a YANG data modelling language parser and toolkit written (and providing API) in C. Current implementation covers YANG 1.0 (RFC 6020) as well as YANG 1.1 (RFC 7950).

Net::DNS::Resolver::Mock is a subclass of Net::DNS::Resolver, but returns static data from any provided DNS zone file instead of querying the network. It is intended primarily for use in testing.

Tool to send a magic packet to wake another host on the network. This must be enabled on the target host, usually in the BIOS.

SRT is a transport technology that optimizes streaming performance across unpredictable networks, such as the Internet.

LibNice is a library that implements the Interactive Connectivity Establishment (ICE) standard (RFC 5245 & RFC 8445). It provides a GLib-based library, libnice, as well as GStreamer elements to use it.

This package provides a daemon that snitches on programs making outbound connections. OpenSnitch is an application-level firewall that gives you granular control over outbound network connections on your system. It monitors application activity and prompts you to allow or deny connections on a per-application basis whenever a new outbound connection is attempted.

Net::CIDR::Lite merges IPv4 or IPv6 CIDR addresses.

whois searches for an object in a WHOIS (RFC 3912) database. It is commonly used to look up the registered users or assignees of an Internet resource, such as a domain name, an IP address block, or an autonomous system. It can automatically select the appropriate server for most queries.

For historical reasons, this package also includes mkpasswd, which encrypts passwords using crypt(3) and is unrelated to the Expect command of the same name.

Net::Bonjour is a set of modules that allow one to discover local services via multicast DNS (mDNS) or enterprise services via traditional DNS. This method of service discovery has been branded as Bonjour by Apple Computer.

Net::DNS::Resolver::Programmable is a programmable DNS resolver for offline emulation of DNS.

Netperf is a benchmark that can be used to measure the performance of many different types of networking. It provides tests for both unidirectional throughput, and end-to-end latency. The environments currently measurable by netperf include: TCP and UDP via BSD Sockets for both IPv4 and IPv6, DLPI, Unix Domain Sockets, SCTP for both IPv4 and IPv6.

Dropwatch is an interactive utility for monitoring and recording packets that are dropped by the kernel. It provides the commands dropwatch and dwdump.

lcsync is a tool to sync files over IPv6 multicast or the local filesystem. It splits the file into blocks, hashes them, and compares them in order to efficiently transfer a minimal amount of data.

This package provides a tiny HTTP client library in C.

Small tool to capture packets from WLAN devices. After capturing, upload the "uncleaned" cap to https://wpa-sec.stanev.org/?submit to see if the access point or the client is vulnerable to a dictionary attack. Convert the cap file to hccapx format and/or to WPA-PMKID-PBKDF2 hashline (16800) with hcxpcaptool from the hcxtools package and check if the WLAN key or the master key was transmitted unencrypted.

This package is a fast tunnel proxy that helps you bypass firewalls.

Features:

• TCP & UDP support

• User management API

• TCP Fast Open

• Workers and graceful restart

• Destination IP blacklist

The ngtcp2 project is an effort to implement the RFC9000 (IETF) QUIC protocol.

Open vSwitch is a multilayer virtual switch. It is designed to enable massive network automation through programmatic extension, while still supporting standard management interfaces and protocols (e.g. NetFlow, sFlow, IPFIX, RSPAN, CLI, LACP, 802.1ag).