Skip to content
/ arplogger Public

arplogger is a tool for Linux systems that listens for arp packets on the specified interface(s) to discover new hosts appearing on the local IPv4 network.

License

MIT license
1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

jhe2/arplogger

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

19 Commits
.woodpecker.yml
.woodpecker.yml
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
db.go
db.go
 
 
db_test.go
db_test.go
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
main.go
main.go
 
 

Repository files navigation

arplogger

Copyright (c) 2021-2022 Johannes Heimansberg

SPDX-License-Identifier: MIT

arplogger is a tool for Linux systems that listens for arp packets on the specified interface(s) to discover new hosts appearing on the local IPv4 network.

It is similar to the classic arpwatch utility and comes with the following features:

Features

  • Passively listens for ARP packets on the local network to discover hosts
  • Supports listening on multiple network interfaces
  • Is meant to run with as few privileges as possible
    • It temporarily needs the Linux kernel's CAP_NET_RAW capability
  • Logs discovered hosts to a logfile

Unlike arpwatch arplogger does not send e-mails by itself, but instead just writes log entries to a logfile. That logfile can be used by other tools to send alerts, if desired.

It keeps track of the hosts in a database file, where it adds a new line for each newly discovered host, with the host's MAC address and its IPv4 address at that time.

About

arplogger is a tool for Linux systems that listens for arp packets on the specified interface(s) to discover new hosts appearing on the local IPv4 network.

Resources

Readme

License

MIT license
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

1 tags

Packages

No packages published

Languages