Full-depth PCAP analysis built natively for Mac. The same Kestrel engine with a desktop-class interface — sidebar navigation, expanded dashboard, top sources and destinations, encryption summary, and the power to handle larger captures.
Get Notified at LaunchAll the depth of Kestrel Sight, redesigned for the Mac with a wider canvas and more power.
Protocol distribution, top sources, top destinations, encryption summary, and file information — all visible at once.
Persistent sidebar with categorized panels — Analysis, Forensics, and Tools — always one click away.
Browse, filter, and inspect every packet with headers, flags, and hex/ASCII payload view.
Reconstruct full application-layer conversations from segmented packets.
See encrypted packet counts, HTTPS/TLS/SSH breakdown, and encryption rate at a glance.
Visual event timeline and forensic session tracking for auditable analysis records.
Native macOS application built with Swift and SwiftUI. Designed for Mac hardware with larger displays and more memory for handling bigger captures.
Same offline-first philosophy as all Kestrel apps. Zero network connections. No telemetry. Your captures never leave your Mac.
Kestrel Talon joins Kestrel Sight and Kestrel Lite (iOS/iPadOS PCAP analysis) and Kestrel Cipher (macOS cryptography toolkit) as part of the Kestrel family. All apps share the same dark theme, offline-first philosophy, and zero-telemetry commitment.