- Real-time traffic inspection and visualization.
- Comprehensive Traffic Statistics.
- Firewall functionalities.
- Metrics explorer.
- Fuzzy search.
- TCP
- UDP
- SCTP
- IP (v4, v6)
- ICMP (v4, v6)
- IGMP (v1, v2, v3)
- ARP
Ideally with Linux kernel version 6.10 or higher to ensure all the features to work properly.
Note
If you're using Debian or Ubuntu, ensure you're on the following minimum versions:
- Debian: Version 13 (Trixie) or newer
- Ubuntu: Version 24.04 (Noble) or newer
You might need to install nerdfonts for the icons to be displayed correctly.
You can download the pre-built binaries from the release page release page
You can install oryx from the extra repository with using pacman:
pacman -S oryxTo build oryx:
rustup toolchain install nightly --component rust-src
2. Install bpf-linker
Check bpf-linker Installation section .
cargo xtask build --release
This will produce an executable file at target/release/oryx that you can copy to a directory in your $PATH.
Run the following command to start oryx:
sudo oryx
Note
You can start oryx with args as well. Check oryx --help to see the available options
?: Show help.
Tab or Shift + Tab: Switch between different sections.
j or Down : Scroll down.
k or Up: Scroll up.
esc: Dismiss the different pop-ups and modes.
q or ctrl + c: Quit the app.
Space: Select/Deselect interface or filter.
f: Update the applied filters.
ctrl + r: Reset the app.
ctrl + s: Export the capture to ~/oryx/capture file.
i: Show more infos about the selected packet.
/: Start fuzzy search.
Space: Toggle firewall rules status.
n : Add new firewall rule.
e: Edit a firewall rule.
s: Save firewall rules to ~/oryx/firewall.json
Enter: Create or Save a firewall rule.
Logo designed by @ling0x
GPLv3