KickThemOut alternatives

Looking for an alternative tool to replace KickThemOut? During the review of KickThemOut we looked at other open source tools. Based on their category, tags, and text, these are the ones that have the best match.

Top 3

  1. larp (ARP poisoning tool)
  2. SCUTUM (ARP filtering)
  3. ArpON (MitM defense tool)

These tools are ranked as the best alternatives to KickThemOut.

Alternatives (by score)

60

larp

Introduction

Larp is a tool to perform ARP poisoning on the network. It is written in Python and can be used for security assessments.

Project details

larp is written in Python.

Strengths and weaknesses

  • + The source code of this software is available

    Typical usage

    • Network spoofing
    • Penetration testing

    larp review

    60

    SCUTUM

    Introduction

    The primary goal of this solution is to prevent ARP spoofing by other computers on the local network. It uses a whitelist and blocks all other systems sending possible malicious ARP requests (e.g. with spoofing attack).

    Project details

    SCUTUM is written in Python.

    Strengths and weaknesses

    • + The source code of this software is available
    • - Full name of author is unknown

    Typical usage

    • Firewall management
    • Network traffic filtering

    SCUTUM review

    63

    ArpON

    Introduction

    ArpOn protects a system by running as a daemon and guard against a Man in the Middle (MitM) attack due to ARP spoofing, cache poisoning, or an ARP poison routing attack.

    The tool works by using three types of inspection to detect a related attack.

    • SARPI (Static ARP Inspection), statically configured networks (without DHCP)
    • DARPI (Dynamic ARP Inspection), dynamically configured networks (with DHCP)
    • HARPI (Hybrid ARP Inspection), statically and dynamically configured networks (with DHCP)

    Project details

    ArpON is written in C.

    Strengths and weaknesses

    • + The source code of this software is available

      ArpON review

      60

      addrwatch

      Introduction

      Similar to arpwatch, this tool addrwatch will monitor the pairing between ethernet and IP addresses.

      Main features:

      • IPv4 and IPv6 address monitoring
      • Monitoring multiple network interfaces with one daemon
      • Monitoring of VLAN tagged (802.1Q) packets
      • Output to stdout, plain text files, syslog, sqlite3, MySQL
      • IP address usage history preserving output and logging

      Project details

      52

      arp-scan

      Introduction

      The arp-scan utility can be used to detect hosts on the network. As it uses ARP, it only applies to IPv4, as IPv6 uses the neighbour discovery protocol (NDP).

      Project details

      84

      arping

      Introduction

      arping is similar to the 'ping' utility for testing a network and the discovery of systems. Where the 'ping' command typically uses the Internet Control Message Protocol (ICMP), arping uses the Address Resolution Protocol (ARP).

      Project details

      93

      Scapy

      Introduction

      Scapy can handle tasks like network scanning, tracerouting, probing, unit tests, attacks or network discovery. Due to its manipulation possibilities, Scapy can send invalid frames. It allows you also to inject custom 802.11 frames, or combine other attacking techniques.

      Project details

      Scapy is written in Python.

      Strengths and weaknesses

      • + More than 2000 GitHub stars
      • + The source code of this software is available
      • - Many provided pull requests are still open

      Typical usage

      • Network analysis
      • Security assessment

      Scapy review

      Some relevant tool missing as an alternative to KickThemOut? Please contact us with your suggestion.