WBITT Network Multitool

dhi.io/wbitt-network-multitool

WBITT Network Multitool

CIS
linux/amd64
linux/arm64

A multi-arch multitool for container and network testing and troubleshooting. Includes a comprehensive set of networking utilities and a minimal nginx web server for easy access and testing. The -extra flavor includes additional tools for advanced networking, database connectivity, and security testing.

About Network Multitool

Network Multitool is a multi-architecture utility image for container and network testing and troubleshooting. This Docker Hardened Image is based on Alpine Linux and packages a broad set of networking tools together with a minimal nginx web server to make it easy to run tests, capture packets, and serve test content.

The container includes tools for DNS inspection, HTTP testing, packet capture, route tracing, and basic system utilities. nginx runs by default on ports 80 and 443, allowing you to quickly validate HTTP/HTTPS behavior from other containers or hosts.

Key Features

  • Comprehensive toolset: Includes curl, wget, dig, nslookup, ping, traceroute, tcpdump, netstat, and more
  • Web server included: nginx runs by default on ports 80 and 443 (customizable via environment variables)
  • SSL/TLS support: Self-signed certificates are generated automatically for convenience
  • Customizable ports: Use HTTP_PORT and HTTPS_PORT environment variables to change default ports
  • Multi-architecture: Supports linux/amd64 and linux/arm64

Tools Included

  • Package manager: apk (dev variants only)
  • Web server: nginx (ports 80, 443)
  • Text processing: awk, cut, diff, find, grep, sed, vi, wc
  • HTTP clients: curl, wget
  • DNS tools: dig, nslookup
  • Network tools: ip, ifconfig, route
  • Tracing: traceroute, tracepath, mtr, tcptraceroute
  • Connectivity: ping, arp, arping
  • Process tools: ps, netstat
  • Compression: gzip, cpio, tar
  • Remote access: telnet client, ssh client
  • Packet capture: tcpdump
  • JSON processing: jq
  • Shell: bash

Security Features

This Docker Hardened Image includes:

  • Runs as non-root user (nginx, UID 65532)
  • Minimal attack surface with only necessary packages
  • Regular security updates
  • No unnecessary services or files
  • Proper file permissions and ownership

Upstream Project

This image is based on the WBITT Network-MultiTool project (https://github.com/wbitt/Network-MultiTool) (formerly praqma/network-multitool).

Trademarks

This listing is prepared by Docker. All third-party product names, logos, and trademarks are the property of their respective owners and are used solely for identification. Docker claims no interest in those marks, and no affiliation, sponsorship, or endorsement is implied.

Try DHI Enterprise

Start a free 30-day DHI Enterprise trial to mirror this image to your organization's registry and unlock full benefits.

SLA-backed CVE remediations

FIPS & STIG-compliant variants

Customizations at enterprise scale

Try DHI Enterprise
Security summary

Distribution:

alpine 3.23

Packages

25

Vulnerabilities

0
0
0
0
0
View full security details
12 Tools included

curl

HTTP client for testing endpoints

wget

Non-interactive network downloader

dig

DNS lookup utility (from bind-tools)

nslookup

Legacy DNS lookup utility

ping

ICMP echo utility for connectivity tests

traceroute

Network path tracing tool

mtr

Combines ping and traceroute for diagnostic

tcpdump

Packet capture tool

netstat

Network connections and listening ports (net-tools)

ip

iproute2 utilities for interface and route management

jq

JSON processor for API responses

nginx

Minimal web server included for serving test content

More info

Recently pushed images

WBITT Network Multitool 3.x

Updated: 12 days ago

View all
Got questions or feedback about this image?

Join GitHub Discussions or our Slack community to share ideas, ask questions, and connect with the team.

Go to discussionsJoin community