Welcome to PacketFest '25

Listen to PacketFest '25 Conference Presentation

PacketFest is a two-day technical event that convenes the ntop and Wireshark communities to discuss network traffic monitoring, visibility, cybersecurity, and open source technologies. The event's primary objective is to demonstrate how contemporary traffic monitoring challenges can be effectively addressed utilizing preferred tools. Additionally, attendees will gain insights into monitoring challenges and gain a comprehensive understanding of the latest advancements in ntop and Wireshark.

What to expect from this event:

Practical guidance on solving real-world packet-related challenges
Discovery of the latest features offered by ntop and Wireshark
Opportunities to connect with like-minded individuals
Inspiration from industry experts who share their acquired knowledge
The chance to contribute to the development of future roadmap items by providing feedback and insights
Interaction with developers and instructors
Acquisition of novel ideas and techniques that can be directly applied to daily work

PacketFest is not a marketing venue or a passive meeting. We actively encourage interaction and the exchange of perspectives among attendees. Sessions will be recorded and shared after the event, but no live streaming will be offered to promote in-person attendance.

All talks and sessions will be in English.

Registration

PacketFest registration fees (includes lunch and coffee breaks for both days):

~~Until Feb 28th~~
~~125 CHF~~
From Match 1st
150 CHF

~~The Pre-Conference event is included in the registration fee, but it's limited in number of available seats.~~. Sorry, the pre-conference event is sold-out.

You can register online, or if you prefer to pay differently (e.g. bank) drop us a mail. A tax invoice is issued with every registration.

Students (University, Hochschule, PhD) and no-profit can participate free of charge (restrictions apply). Please fill this form to register.

Agenda

Day 1: Thursday May 8th

9:00
Welcome to PacketFest
9:15
Kelley Misata - OISF

Beyond the Code: The Expansive Role of Open Source in Building Stronger Communities and Driving Innovation
Open Source Suricata IDS
10:00
Pierre Sarda - Nagravision

Using DPI (Deep Packet Inspection) To Fight Against Content Privacy
Deep Packet Inspection High-Speed Traffic Analysis

10:30
Coffee Break

11:00
Adrian Ruoss - Alabus

Active response system with ntopng+AbuseIP DB+Alabus
Cybersecurity ntopng
11:20
Alfredo Cardigliano - ntop

Squeezing Network Adapters: Tips and Tricks to Offload and Scale Up
High-Speed Traffic Monitoring PF_RING
12:00
Fabio Zambrino - CSCS

400 Gbps Observability
High-Speed Traffic Monitoring SmartNICs

12:30
Lunch Break

13:30
Andreas Diedrich - Interview Network Solutions

Sharkmon - monitor your shark data
Wireshark
13:50
Walter Hofstetter - AnyWeb

Decoding Cyber Threats: Wireshark Tips and Tricks for Analyzing Suspicious Traffic Patterns
Cyberecurity Wireshark
14:30
Thomas Graf - Swisscom

Transform and Innovate Network Operations with Network Analytics
Network Anomaly Detection Network Telemetry
15:00
Ahmed Elhassany - Swisscom

NetGauze: the open-source blocks for building resilient and scalable network telemetry platforms
IPFIX/NetFlow Network Telemetry
15:15
Marco Graziano - Graziano Labs

MCP Server Magic: Integrating ntopng with Large Language Models for Smarter Networks
ntopng Artificial Intelligence

15:30
Coffee Break

16:00
Walter Hofstetter - AnyWeb, Gabriele Deri - ntop

How AI Will Improve Network Traffic Analysis?
Artificial Intelligence
16:45
Gerald Combs, Wireshark Foundation

Wiresharchaeology: How it started and where we're headed
Wireshark
17:30
End of Day 1

Day 2: Friday May 9th

9:00
Rolf Leutert - Leutert NetServices

Wireshark, the 7 Senses Packet Detective
Wireshark TCP/IP
9:45
Mischa Diehm - Narrowin

Building Digital Twins with Containerlab: Using ntop Tools and Wireshark for Advanced Network Traffic Analysis
ntopng Wireshak

10:15
Coffee Break

10:45
Ivan Nardi - AI2M

First Packet Classification, Fingerprints and Obfuscated Flows Detection in nDPI
Traffic Classification nDPI
11:20
Martin Scheu - Switch

Unfold the OT Network Jungle
OT/SCADA
11:50
Raphael Vallazza - Endian

Building a Unified Cybersecurity Platform for IT & OT
OT Cybersecurity

12:20
Lunch Break

13:20
Pim van Pelt - IPng Networks

High speed sFlow with VPP
DPDK/VPP sFlow
13:50
Rolf Leutert - Leutert NetServices

What if Packets are not Enough ?
Stratoshark System Monitoring
14:20
Matteo Biscosi - ntop

Advanced Network Analysis Using ntopng
ntopng
14:50
Luca Deri - ntop

25+ Years of Open Source: ntop past and future plans
Open Source ntop

15:20
Coffee Break

15:50
Roundtable/Panel

Panelists: Criznic Petru Ciprian - Sunrise, Giordano Zambelli - VerXo, Mischa Diehm - Narrowin, Ahmed Elhassany - Swisscom

What's Next in Traffic Monitoring and Packet Analysis ? Open Issues and Future Opportunities.
Community Discussion
16:50
Closing Remarks

Pre-Conference Event

ntop Training: Wednesday May 7th

14:00
Alfredo Cardigliano - ntop

Using ntop Tools in Cybersecurity
14:45
Michael Muenz - m.a.x. Informationstechnologie

Integrating ntopng in Wazuh SIEM
15:15
Matteo Biscosi - ntop

A Deep Dive into ntopng
16:00
Martin Scheu - Switch

Open Source OT monitoring
16:45
Luca Deri - ntop

How to use nDPI for Network Visibiity and Traffic Enforcement
17:15
ntop Team

Q&A: All You Wanted to Know About ntop Tools

Location

The meeting venue is walking distance from Zurich Hauptbahnhof (main train station) close to the Zürich city centre.

Conference
PH Zürich, Lagerstrasse 2, 8090 Zürich, Switzerland
Pre-Conference
Switch, Werdstrasse 2, 8004 Zürich, Switzerland

Note that the pre-conference and the conference are located on two different locations (still in walking distance).

Accommodation

Zurich has many accommodations you can find on sites such as Airbnb, Trip or Booking. Below a selection of accomodations close to the conference and city center.