TCPView Microsoft Corporation
winget install --id=Microsoft.Sysinternals.TCPView -e TCPView is a Windows program that will show you detailed listings of all TCP and UDP endpoints on your system, including the local and remote addresses and state of TCP connections.
TCPView is a Windows utility designed to display detailed information about all TCP and UDP endpoints on your system, including local and remote addresses, port numbers, connection states, and the associated process names. This tool provides a comprehensive view of network activity, making it easier to monitor and troubleshoot connections.
Key Features:
- Real-Time Monitoring: Displays active TCP and UDP endpoints with details such as connection states (e.g., ESTABLISHED, LISTENING) and remote addresses.
- Process Identification: Shows the name of the process or service owning each endpoint, aiding in identifying which applications are using network resources.
- Connection State Visualization: Highlights changes in connection states, new connections, and closed endpoints with color-coded indicators (yellow for changes, red for deletions, green for new connections).
- Command-Line Tool: Includes Tcpvcon, a command-line version that allows saving output as CSV or text files for further analysis.
- Adjustable Refresh Rate: Users can set the update frequency to suit their monitoring needs.
Audience & Benefit:
Ideal for system administrators and network professionals, TCPView provides actionable insights into network activity. It helps users identify unnecessary connections, troubleshoot connectivity issues, and manage network resources efficiently.
TCPView can be installed via winget, making it easy to integrate into your workflow.