Lightweight and open-source desktop app built with Rust and Tauri.
Captures network traffic and generates flow matrices for critical infrastructure auditing.
Gain deep network visibility.
Eliminate shadow IT/OT.
Empower your SOC/CSIRT teams.
Stay ahead of cyber threats.
- Network Administrators
- Network Auditors
- SOC Architects
Automatically discover devices and connections. Build complete topology maps to identify blind spots and ensure full network coverage.
Identify unauthorized network protocols, as well as hidden IT, IoT, and OT devices or rogue connections.
Generate detailed network documentation and traffic reports for regulatory audits. Track changes over time and demonstrate visibility controls.
Establish a baseline of normal network behavior and use it to create or refine SOC rules.
-
Configures the selected network interface in promiscuous mode
-
Reconstructs packet metadata in real time and maps traffic relationships
-
Supports parsing of the following protocols:
- Ethernet (MAC)
- IPv4, IPv6, ARP
- ICMPv4, ICMPv6
- UDP, TCP
- HTTP, DNS, TLS, SSL
- NPcap: Required for packet capture. You must also install the WinPcap Developer Pack.
- Environment Variable: Add the
/Libor/Lib/x64folder to your systemLIBenvironment variable.
-
libpcap-dev: On Debian-based distributions, run:
sudo apt install libpcap-dev
-
Non-root Execution: Grant required capabilities using:
sudo setcap cap_net_raw,cap_net_admin=eip path/to/binary
Example:
sudo setcap cap_net_raw,cap_net_admin=eip src-tauri/target/debug/sonar-desktop-app
- libpcap: Already included by default on macOS systems. No additional setup is required.