bandwhich

Monitor network usage

$ bandwhich

$ bandwhich --raw

$ bandwhich --interface [eth0]

$ bandwhich --no-resolve

bandwhich [options]

bandwhich is a CLI utility for displaying current network utilization by process, connection, and remote IP/hostname. It provides a terminal UI showing which programs are using bandwidth in real-time.
The tool is particularly useful for identifying bandwidth-heavy applications and monitoring network activity.

-i, --interface name

Monitor specific interface

Show raw addresses without resolution

Don't resolve hostnames

Show DNS queries

DNS server for resolution

- Real-time bandwidth monitoring
- Per-process statistics
- Connection details
- Remote host identification
- Interactive terminal UI
- DNS query logging

Display sections:
- Processes - Bandwidth per process
- Connections - Active connections
- Remote addresses - Traffic by destination
- Total - Aggregate statistics

Requires root/sudo for packet capture. May not capture all traffic types. Hostname resolution can slow display. Terminal must support required features. Some VPN traffic may not be attributed correctly.

bandwhich was created by Aram Drevekenin around 2019 as a modern, user-friendly alternative to tools like iftop and nethogs.

iftop(8), nethogs(8), netstat(8)