- Paperback: 550 pages
- Publisher: Syngress; 1 edition (April 21, 2004)
- Language: English
- ISBN-10: 1932266828
- ISBN-13: 978-1932266825
- Product Dimensions: 7.1 x 1.3 x 9.1 inches
- Shipping Weight: 1.8 pounds (View shipping rates and policies)
- Average Customer Review: 3.8 out of 5 stars See all reviews (26 customer reviews)
- Amazon Best Sellers Rank: #3,828,893 in Books (See Top 100 in Books)
Enter your mobile number or email address below and we'll send you a link to download the free Kindle App. Then you can start reading Kindle books on your smartphone, tablet, or computer - no Kindle device required.
To get the free app, enter your mobile phone number.
Ethereal Packet Sniffing 1st Edition
Use the Amazon App to scan ISBNs and compare prices.
Featured resources for tech professionals
Explore these featured titles, sponsored by Springer. Learn more
About the Author
Angela Orebaugh (CISSP, GCIA, GCFW, GCIH, GSEC, CCNA) has worked in information technology for 10 years. She is currently an Associate at Booz Allen Hamilton in the Washington, DC metro area. Her focus is on perimeter defense, secure architecture design, vulnerability assessments, penetration testing, and intrusion detection. Angela is expert in many commercial and Open Source intrusion detection and analysis tools including Ethereal, Snort, Nessus, and Nmap. She is a graduate of James Madison University with a masters in computer science, and she is currently pursuing her PhD with a concentration in information security at George Mason University. Her GCFW practical received honors recognition and was used as a case study in the book Network Perimeter Security: The Definitive Guide to Firewalls, VPNs, Routers, and Network Intrusion Detection by Stephen Northcutt (ISBN: 0735712328). Angela is a researcher, writer, and speaker for SANS Institute, where she has helped to develop and revise SANS course material and also serves as the Senior Mentor Coach for the SANS Local Mentor Program.
Gilbert Ramirez was the first contributor to Ethereal after it was announced to the public and is known for his regular updates to the product. He has contributed protocol dissectors as well as core logic to Ethereal. He is a systems engineer at a large company with network-related products, where he works on tools and software build systems. Gilbert is a family man, a want-to-be chef, and a student of tae kwon do. His degree is in linguistics, but his first love is programming computers, which he has been doing since childhood.
If you are a seller for this product, would you like to suggest updates through seller support?
Top Customer Reviews
If you do not already have this book and know how to use Ethereal, you should buy this book soon. Start by reading the book, but you really should learn to use Ethereal "hands on", on your LAN as soon as possible. You need to know what "normal" conditions look like on your LAN. When your LAN is down, you probably will not have time for much reading. This book provides far too much information to digest and understand at one time, especially while your LAN is down. This is a book to read when you have some "slow" time because your network is OK.
I gave this book 4 stars only because I think a new edition should be released soon. The current edition is now several years old, and with the name of the software recently changed to Wireshark, the book should be updated with the new name for this classic LAN troubleshooting tool.
This book is more like a very good user manual for version 0.10.0 (current version as of 4/20/06 is 0.10.14, so there are a few more features than this book covers.) What seems to be a new version of the book with a new title is due out in June of 2006, so some of you might want to wait until it gets released if you want the most up to date version.
I've been just a casual user of Ethereal for a couple years so I thought I'd learn a lot from this book. Surprisingly though, only chapters 5 "Filters" and 8 "Real World Packet Captures" were helpful to me. Everything else was either stuff I could easily figure out on my own, or things I don't use.
Except for chapter 8 with the real-world examples and possibly chapter 9, "Developing Ethereal", this book is just a user manual and should be bought only with this in mind. It would be fun if they made another book that focuses on packet analyzation using Ethereal as the tool. I'll wait.
Evaluated as a user manual only, I'll give it 4 stars. Because it's merely a user manual, it should be less expensive. Then it would earn 5 stars.
The opening chapter provides a very good overview of network analysis for those who are new to the whole concept. It answers questions like "What Is Network Analysis and Sniffing?" and "How Does It Work?".
One of the nice things about this book is that it is completely dedicated to this one product. So, rather than hitting the highlights of various applications and glossing over features and functionality this book provides entire chapters devoted to installing and using Ethereal's basic functionality and then goes on to cover advanced concepts in great detail.
Chapter 7 explains how to integrate Ethereal with other products and using Ethereal to analyze data from applications such as Snort, Snoop, Microsoft Network Monitor and more. Because Ethereal is open source anyone with an idea and some extra time is welcome to contribute to the project by developing Ethereal further. Chpater 9 is dedicated to illustrating what you need to know as a developer to help improve Ethereal.
The book comes with a CD which contains Ethereal among other things, but CD's are quickly outdated and you are better off downloading the current Ethereal from the site. Regardless, this book is a must have for anyone running Ethereal and is well worth the money.
Most Recent Customer Reviews
this books makes a fairly easy sniffer, much easier to use.
It has something for everyone.Read more