Hello everybody!
After some time of absence i'm here again with some new programs i wrote.
As result of some experiments i made with packet drivers, i wrote four little utilities which you might like (or perhaps not? ). But look yourself:
ETHSEND
ETHDUMP
ETHWHO
ETHWHAT
All programs require a packet driver but no further configuration. They behave purely passive and do not appear themselves in the LAN (except ETHSEND of course). And sorry, there is no further documentation yet, but each program has a brief help-function, which can be accessed by the /? command-line option ( -h will do as well).
Everybody may feel free to download the attached archive ETHTOOLS.ZIP and try the included programs. And of course i would appreciate many comments.
After some time of absence i'm here again with some new programs i wrote.
As result of some experiments i made with packet drivers, i wrote four little utilities which you might like (or perhaps not? ). But look yourself:
ETHSEND
Is a program that sends a single raw ethernet packet out to the LAN. As such, it is not terribly usefull for everday (network-) life, but for experimental and testing purposes it can be quite handy. It helped me a lot in writing the other three programs.
ETHDUMP
Is just another packet sniffer. This isn't terribly innovative as well, but for me it was a pre-requisite for writing the other two programs. As it therefore had to be done anyway, why not give it a decent user-interface and turn it into something usefull?
It basicly duplicates the functionality of the program ETHCAPT, written by Yusuf Motiwala, many years ago. However it allows to display the data already while recording, with two levels of verbosity (headers only or full data as raw hex dump). In addition it has some filtering capabilities which its predecessor hasn't got. It can optionally write the captured data to a binary file in the same format as ETHCAPT would do, so it can later be visualized by ETHVIEW (also by Yusuf).
It basicly duplicates the functionality of the program ETHCAPT, written by Yusuf Motiwala, many years ago. However it allows to display the data already while recording, with two levels of verbosity (headers only or full data as raw hex dump). In addition it has some filtering capabilities which its predecessor hasn't got. It can optionally write the captured data to a binary file in the same format as ETHCAPT would do, so it can later be visualized by ETHVIEW (also by Yusuf).
ETHWHO
Is a program that tries to generate a who-is-who of your ethernet LAN (with bus-topology). It lists in tabular form the source and destination ethernet adresses of the packets passing by and counts who is sending whom how many packets. The content of this table is optionally exported into a csv-file (character separated value) from where it can be further processed in what ever way, e.g. be imported into an excel table.
ETHWHAT
Is a program that watches your (bus topology) ethernet and tries to figure out what game they are playing. It analyzes the packets passing by, according to frame-type and protocol used (IP, IPX, ...) and displays statistics about it. In addition, if it finds IP-traffic, it tries to guess the basic configuration parameters from the found data.
All programs require a packet driver but no further configuration. They behave purely passive and do not appear themselves in the LAN (except ETHSEND of course). And sorry, there is no further documentation yet, but each program has a brief help-function, which can be accessed by the /? command-line option ( -h will do as well).
Everybody may feel free to download the attached archive ETHTOOLS.ZIP and try the included programs. And of course i would appreciate many comments.