📑 Table of Contents
EtherApe
DevelopersRiccardo Ghetta, Juan Toledo, Ronald W. Henderson
Initial releaseFebruary 17, 2000 (2000-02-17)
Stable release
0.9.22 / April 12, 2026; 2 months ago (2026-04-12)
Written inC
Operating systemLinux and Unix-like
Available inEnglish
TypeNetworking
LicenseGNU General Public License
Websitehttps://etherape.sourceforge.io/
Repositorysourceforge.net/p/etherape/etherape/ci/default/tree

EtherApe is a packet sniffer/network traffic monitoring tool, developed for Unix. EtherApe is free, open source software developed under the GNU General Public License.

Functionality

edit

Network traffic is displayed using a graphical interface. Each node represents a specific host. Links represent connections to hosts. Nodes and links are color-coded to represent different protocols forming the various types of traffic on the network. Individual nodes and their connecting links grow and shrink in size with increases and decreases in network traffic.

History

edit

Originally authored by Juan Toledo, the first version of EtherApe (version 0.0.1) was released on February 18, 2000. In a 2006 survey, Insecure.org named EtherApe number 43 on its list of the "Top 100 Network Security Tools".[1] From release 0.9.8, development is mainly carried out by Riccardo Ghetta.

Features

edit

Some of the features listed about EtherApe include (the following list refers to version 0.9.22 of EtherApe):

  • graphical network traffic display
  • color-coded node and links for most used protocols
  • optional background image
  • traffic may be viewed on one's own network, end to end (IP) or port to port (TCP)
  • a variety of frame and packet types are supported
  • data view can be manipulated using a network filter
  • clicking a node or link provides additional information regarding including protocol and traffic information
  • summary protocol and node table
  • can read traffic from a file or an actual network
  • handles traffic on Ethernet, WLAN, VLAN plus several other media and encapsulation types (e.g IEEE 802.2)
  • supports both IPv4 and IPv6
  • XML and JSON export of node, link and traffic statistics
  • "central node ring" mode.
  • "column" mode.
  • optional name resolving using c-ares library
  • packet capture and display run on different processes

Security

edit

EtherApe requires root privileges to capture packets (but not to replay captured files). Starting with release 0.9.15 capturing is delegated to a separate process, while the main interface can run with lower privileges, significantly reducing the risk associated with capturing packets from untrusted sources (e.g. Internet).

See also

edit

References

edit

📚 Artikel Terkait di Wikipedia

Comparison of packet analyzers

deprecated archival service (link) "CHANGES". monkey.org. "EtherApe, a graphical network monitor". etherape.sourceforge.net. Retrieved March 22, 2020. "Releases

Pcap

and Abel, a discontinued password recovery tool for Microsoft Windows EtherApe, a graphical tool for monitoring network traffic and bandwidth usage in

Tcpdump

software portal Tcptrace, a tool for analyzing the logs produced by tcpdump EtherApe, a network mapping tool that relies on sniffing traffic Ngrep, a tool that

Wireshark

open-source software portal Capsa (software) Comparison of packet analyzers EtherApe Fiddler (software) netsniff-ng ngrep Omnipeek tcptrace "Wireshark Is 25:

Justniffer

that can match regular expressions within the network packet payloads etherape, a network mapping tool that relies on sniffing traffic tcptrace, a tool

Tcptrace

addition to the TCP capabilities. Free and open-source software portal dsniff EtherApe netsniff-ng Ngrep tcpdump Wireshark Blum, Richard (2003-08-06). Network

DSniff

flooding). Free and open-source software portal Comparison of packet analyzers EtherApe, a network mapping tool that relies on sniffing traffic netsniff-ng, a

Ngrep

of traffic analysis tools netsniff-ng, a free Linux networking toolkit etherape, a network mapping tool that relies on sniffing traffic tcptrace, a tool