Iodine tunnels IPv4 data through a DNS server. This can be useful in different situations where internet access is firewalled, but DNS queries are allowed. The bandwidth is asymmetrical, with limited upstream and up to 1 Mbit/s downstream.

Libnet provides a fairly portable framework for network packet construction and injection. It features portable packet creation interfaces at the IP layer and link layer, as well as a host of supplementary functionality. Using libnet, quick and simple packet assembly applications can be whipped up with little effort.

Small tool to capture packets from WLAN devices. After capturing, upload the "uncleaned" cap to https://wpa-sec.stanev.org/?submit to see if the access point or the client is vulnerable to a dictionary attack. Convert the cap file to hccapx format and/or to WPA-PMKID-PBKDF2 hashline (16800) with hcxpcaptool from the hcxtools package and check if the WLAN key or the master key was transmitted unencrypted.

This package provides a multi-threaded TFTP server that implements all options, including all extensions, as specified in RFC 1350, RFC 2090, RFC 2347, RFC 2348, RFC 2349 and RFC7440. Atftpd also supports a multicast protocol known as mtftp, which was defined in the PXE specification.

The server is socket activated by default but supports being started from inetd as well as in daemon mode.

The 0MQ lightweight messaging kernel is a library which extends the standard socket interfaces with features traditionally provided by specialized messaging middle-ware products. 0MQ sockets provide an abstraction of asynchronous message queues, multiple messaging patterns, message filtering (subscriptions), seamless access to multiple transport protocols and more.

Netdiscover is a network address discovery tool developed mainly for wireless networks without a DHCP server. It also works on hub/switched networks. It is based on ARP packets, it will send ARP requests and sniff for replies.

This package provides a command-line client (gandi) to buy, manage, and delete Internet resources from Gandi.net such as domain names, virtual machines, and certificates.

Spiped (pronounced "ess-pipe-dee") is a utility for creating symmetrically encrypted and authenticated pipes between socket addresses, so that one may connect to one address (e.g., a UNIX socket on localhost) and transparently have a connection established to another address (e.g., a UNIX socket on a different system). This is similar to 'ssh -L' functionality, but does not use SSH and requires a pre-shared symmetric key.

yggtray is an Yggdrasil tray and control panel. It allows the user to configure, run and control the Yggdrasil daemon.

The ngtcp2 project is an effort to implement the RFC9000 (IETF) QUIC protocol.

Blueman is a Bluetooth management utility using the Bluez D-Bus backend. It is designed to be easy to use for most common Bluetooth tasks.

libndp contains a library which provides a wrapper for IPv6 Neighbor Discovery Protocol. It also provides a tool named ndptool for sending and receiving NDP messages.

fping is a ping-like program which uses ICMP echo requests to determine if a target host is responding.

fping differs from ping in that you can specify any number of targets on the command line, or specify a file containing the lists of targets to ping. Instead of sending to one target until it times out or replies, fping will send out a ping packet and move on to the next target in a round-robin fashion.

With this package you can monitor and filter incoming requests for network services. It includes a library which may be used by daemons to transparently check connection attempts against an access control list.

Net::DNS is the Perl Interface to the Domain Name System.

uBridge is a simple program to create user-land bridges between various technologies. Currently, bridging between UDP tunnels, Ethernet and TAP interfaces is supported. Packet capture is also supported.

This package provides the NBD (Network Block Devices) client and server. It allows you to use remote block devices over a TCP/IP network.

Arp-scan is a tool that uses ARP to discover and fingerprint IP hosts on the local network.

This is a tftp client derived from OpenBSD tftp with some extra options added and bugs fixed. The source includes readline support but it is not enabled due to license conflicts between the BSD advertising clause and the GPL.

RTMPdump is a toolkit for RTMP streams. All forms of RTMP are supported, including rtmp://, rtmpt://, rtmpe://, rtmpte://, and rtmps://.

ENet's purpose is to provide a relatively thin, simple and robust network communication layer on top of UDP. The primary feature it provides is optional reliable, in-order delivery of packets. ENet omits certain higher level networking features such as authentication, server discovery, encryption, or other similar tasks that are particularly application specific so that the library remains flexible, portable, and easily embeddable.

The THC IPv6 Toolkit provides command-line tools and a library for researching IPv6 implementations and deployments. It requires Linux 2.6 or newer and only works on Ethernet network interfaces.

This package provides a modern, but Linux-specific implementation of the traceroute command that can be used to follow the route taken by packets on an IP network on their way to a given host. It utilizes the IP protocol's time to live (TTL) field and attempts to elicit an ICMP TIME_EXCEEDED response from each gateway along the path to the host. Compared to other implementations, this traceroute command allows some traces for unprivileged users.

PageKite implements a tunneled reverse proxy which makes it easy to make a service (such as an HTTP or SSH server) on localhost visible to the wider Internet, even behind NAT or restrictive firewalls. A managed front-end relay service is available at https://pagekite.net/, or you can run your own.