Homebrew
easiest
Silent install, auto-updates with brew upgrade.
Mac app · beta · runs on your machine
Should I join this Wi-Fi?
Whenever I go to a café, I get curious about the Wi-Fi. What's the network. Who else is connected. Is it fast enough. Is the gateway spoofed.
Before this app I'd open four things. A speed checker. The terminal for pings. An ARP scanner to count devices. Then sit there squinting at all of them at once.
This is all of that, in one app you open from the menu bar.
In beta · install with $ brew install sreebalakrishnan/netaudit/netaudit or ↓
Here's what it tells you. The same dot sits in the menu bar so you can peek without opening anything.
This network looks safe.
on "café-guest"
- Encrypted Wi-Fi.
- Fast enough for HD video.
- Snappy response. Calls and games should feel smooth.
- No tampering signs.
Install
macOS 11 or later. Apple Silicon or Intel. ~80 MB. Free, no telemetry.
curl
No Homebrew needed. Same result.
curl -fsSL https://netaudit.sreeb.dev/install.sh | bash
Manual DMG
If you'd rather drag the app into /Applications yourself. First launch needs right-click → Open (the long story is in INSTALL.md).
The honest part
I haven't paid Apple their $99 yet. Which means: it's signed but not notarized. If you install via the curl one-liner or Homebrew you won't notice. If you double-click the DMG, macOS will warn you the first time and you'll need to right-click → Open. One-time thing.
Not on the App Store. Apple's sandbox would block about half the checks (the interesting ones, mostly). Might tackle that some day. Probably not soon.
Tested mostly on my own LAN at home and at a couple of cafés in Pondy. If you find something weird, drop an issue on GitHub.
What it's checking
Eleven things. The ones I actually care about: whether the gateway MAC looks tampered with (the classic café-MITM tell), jitter (whether calls will stutter), which DNS resolver the network handed me (and whether it's a familiar one), and how many hops my traffic takes to reach the open internet.
Plus the obvious ones — encryption type, download speed, public IP and geo, captive portal detection, whether a VPN is on, whether Apple Private Relay is reachable. And a LAN scan that labels every device on your network as a phone, TV, computer, printer or speaker, using mDNS / SSDP / port profiling.
Everything runs locally. The probes are rootless, so no password prompt.
Source
Python backend wrapped in a native macOS shell (rumps for the menu bar, WKWebView for the window). Bundled with py2app. Open source, MIT-ish, do whatever.