Internet / Network Security

  1. Home
  2. Computing & Technology
  3. Internet / Network Security

Book Review: Ethereal Packet Sniffing

About.com Rating four out of Five

From Tony Bradley, CISSP-ISSAP, for About.com

Ethereal Packet Sniffing

The Bottom Line

Ethereal is one of the best packet sniffing utilities available, and the price is right for anyone. This book is dedicated not to packet sniffing, but purely to Ethereal. Even if you are a seasoned Ethereal pro this book will teach you some new tricks. Even if you use a different packet sniffer this book can teach you some different techniques or ways to analyze the data that you might find useful. Ethereal is free, so why not spend $50 to get the book to teach you how to use it?
Pros
  • Detailed look at one of the best packet sniffing tools available
  • Easy to read and comprehend
  • Great investment for anyone using Ethereal
Cons
  • Some graphics and details are already out of date

Description

  • Ethereal is the cream of the crop in packet sniffers and this book will show you how to use it
  • Ethereal is almost constantly being updated which makes some of the information outdated
  • Exceptional detail on Ethereal functionality and how to write filters to help you analyze the data
  • If you want to get the most out of this free software, this may be the best money you spend
  • Explains how to use Ethereal with other products such as Snort, Microsoft Network Monitor and more
  • Discusses use of other products in the suite like MergeCap, EditCap and Tethereal

Guide Review - Book Review: Ethereal Packet Sniffing

Ethereal is fairly commonly accepted as one of the best, if not the best packet sniffer available. If its not the best, it certainly is hard to get more bang for the buck because Ethereal is freely available as an open source application.

The opening chapter provides a very good overview of network analysis for those who are new to the whole concept. It answers questions like "What Is Network Analysis and Sniffing?" and "How Does It Work?".

One of the nice things about this book is that it is completely dedicated to this one product. So, rather than hitting the highlights of various applications and glossing over features and functionality this book provides entire chapters devoted to installing and using Ethereal's basic functionality and then goes on to cover advanced concepts in great detail.

Chapter 7 explains how to integrate Ethereal with other products and using Ethereal to analyze data from applications such as Snort, Snoop, Microsoft Network Monitor and more. Because Ethereal is open source anyone with an idea and some extra time is welcome to contribute to the project by developing Ethereal further. Chpater 9 is dedicated to illustrating what you need to know as a developer to help improve Ethereal.

The book comes with a CD which contains Ethereal among other things, but CD's are quickly outdated and you are better off downloading the current Ethereal from the site. Regardless, this book is a must have for anyone running Ethereal and is well worth the money.

Compare Prices

Explore Internet / Network Security

About.com Special Features

Browse All About.com

Internet / Network Security

  1. Home
  2. Computing & Technology
  3. Internet / Network Security
  4. Product and Book Reviews
  5. Read Book Reviews
  6. Sorted by Title
  7. E
  8. Book Review: Ethereal Packet Sniffing

©2009 About.com, a part of The New York Times Company.

All rights reserved.