Researchers and power users can use SPIN to inspect their own networks, or to analyze data from devices.
Researchers can use SPIN to gain insight into the network behaviour of devices, or -to name something- to research what happens if you intervene in this traffic.
SPIN also offers the possibility to inspect recent traffic, or even (locally) capture all traffic from a specific device, after which more in-depth analyses can be performed.
Besides that, SPIN offers options to prototype completely new security measures.
SIDN Labs uses SPIN themselves to research anomaly detection, and to build prototypes such as a working DOTS implementation.