FRRouting (FRR) is an IP routing protocol suite which includes protocol daemons for BGP, IS-IS, LDP, OSPF, PIM, and RIP.

This package provides a daemon that snitches on programs making outbound connections. OpenSnitch is an application-level firewall that gives you granular control over outbound network connections on your system. It monitors application activity and prompts you to allow or deny connections on a per-application basis whenever a new outbound connection is attempted.

Small tool to capture packets from WLAN devices. After capturing, upload the "uncleaned" cap to https://wpa-sec.stanev.org/?submit to see if the access point or the client is vulnerable to a dictionary attack. Convert the cap file to hccapx format and/or to WPA-PMKID-PBKDF2 hashline (16800) with hcxpcaptool from the hcxtools package and check if the WLAN key or the master key was transmitted unencrypted.

pysctp implements the SCTP socket API. You need a SCTP-aware kernel (most are).

wireproxy is a completely userspace application that connects to a wireguard peer, and exposes a socks5/http proxy or tunnels on the machine.

IFStatus is a simple, easy-to-use program for displaying commonly needed/wanted real-time traffic statistics of multiple network interfaces, with a simple and efficient view on the command line. It is intended as a substitute for the PPPStatus and EthStatus projects.

Phantomsocks is an Internet censorship circumvention tool based on the desync technique, which was introduced in the 2017 paper Your State is Not Mine: A Closer Look at Evading Stateful Internet Censorship.

Further information on the usage could be found on the Wikibooks page Phantomsocks.

aMule is an eMule-like client for the eD2k and Kademlia peer-to-peer file sharing networks. It includes a graphical user interface (GUI), a daemon allowing you to run a client with no graphical interface, and a Web GUI for remote access. The amulecmd command allows you to control aMule remotely.

The ngtcp2 project is an effort to implement the RFC9000 (IETF) QUIC protocol.

The 0MQ lightweight messaging kernel is a library which extends the standard socket interfaces with features traditionally provided by specialized messaging middle-ware products. 0MQ sockets provide an abstraction of asynchronous message queues, multiple messaging patterns, message filtering (subscriptions), seamless access to multiple transport protocols and more.

Restbed is a comprehensive and consistent programming model for building applications that require seamless and secure communication over HTTP.

LibNice is a library that implements the Interactive Connectivity Establishment (ICE) standard (RFC 5245 & RFC 8445). It provides a GLib-based library, libnice, as well as GStreamer elements to use it.

UsrSCTP is a portable SCTP userland stack. SCTP is a message oriented, reliable transport protocol with direct support for multihoming that runs on top of IP or UDP, and supports both v4 and v6 versions.

pproxy is an asynchronuous proxy server implemented with Python 3 asyncio. Among the supported protocols are HTTP, SOCKS and SSH, and it can use both TCP and UDP as transport mechanisms.

Bandwidth Monitor NG is a small and simple console based live network and disk I/O bandwidth monitor.

httpstat is a tool to visualize statistics from the curl HTTP client. It acts as a wrapper for curl and prints timing information for each step of the HTTP request (DNS lookup, TCP connection, TLS handshake and so on) in the terminal.

NDisc6 is a collection of tools for IPv6 networking diagnostics. It includes the following programs:

• ndisc6: ICMPv6 Neighbor Discovery tool.

• rdisc6: ICMPv6 Router Discovery tool.

• tcptraceroute6: IPv6 traceroute over TCP.

• traceroute6: IPv6 traceroute over UDP.

• rdnssd: Recursive DNS Servers discovery daemon.

Iodine tunnels IPv4 data through a DNS server. This can be useful in different situations where internet access is firewalled, but DNS queries are allowed. The bandwidth is asymmetrical, with limited upstream and up to 1 Mbit/s downstream.

Nanomsg is a socket library that provides several common communication patterns. It aims to make the networking layer fast, scalable, and easy to use. Implemented in C, it works on a wide range of operating systems with no further dependencies.

ENet's purpose is to provide a relatively thin, simple and robust network communication layer on top of UDP. The primary feature it provides is optional reliable, in-order delivery of packets. ENet omits certain higher level networking features such as authentication, server discovery, encryption, or other similar tasks that are particularly application specific so that the library remains flexible, portable, and easily embeddable.

Tunctl is used to set up and maintain persistent TUN/TAP network interfaces, enabling user applications to simulate network traffic. Such interfaces are useful for VPN software, virtualization, emulation, simulation, and a number of other applications.

Proxychains-ng is a preloader which hooks calls to sockets in dynamically linked programs and redirects them through one or more SOCKS or HTTP proxies.

lcagent can send and receive data over multicast and to pipe data between programs on one computer and as many receivers as the multicast network can support simultaneously.

PuTTY is a graphical text terminal client. It supports SSH, telnet, and raw socket connections with good terminal emulation. It can authenticate with public keys and Kerberos single-sign-on. It also includes command-line SFTP and older SCP implementations.