0004387: Addrwatch - This is used to monitor network and log discovered ethernet/ip pairings.

ID	Project	Category	View Status	Date Submitted	Last Update

0004387	Kali Linux	New Tool Requests	public	2017-12-05 11:23	2020-03-18 18:07

Reporter	j_jito	Assigned To
Priority	normal	Severity	feature	Reproducibility	have not tried
Status	closed	Resolution	suspended

Summary	0004387: Addrwatch - This is used to monitor network and log discovered ethernet/ip pairings.
Description	Main features of addrwatch: IPv4 and IPv6 address monitoring Monitoring multiple network interfaces with one daemon Monitoring of VLAN tagged (802.1Q) packets. Output to stdout, plain text file, syslog, sqlite3 db, MySQL db IP address usage history preserving output/logging Addrwatch is extremely useful in networks with IPv6 autoconfiguration (RFC4862) enabled. It allows to track IPv6 addresses of hosts using IPv6 privacy extensions (RFC4941). Addrwatch do not keep persistent network pairings state but instead logs all the events that allow ethernet/ip pairing discovery. For IPv4 it is ARP requests, ARP replies and ARP ACD (Address Conflict Detection) packets. For IPv6 it uses ICMPv6 Neighbor Discovery and (DAD) Duplicate Address Detection packets (Neighbor Solicitations, Neighbor Advertisements).
Steps To Reproduce	git clone https://github.com/fln/addrwatch.git ./configure make make install addrwatch --help
Additional Information	libpcap , libevent , mysqlclient apt-get install libpcap libevent mysqlclient

dookie 2017-12-15 23:00 reporter ~0007702	This works very well and would make a good addition to the distro.

g0tmi1k 2018-01-29 14:38 administrator ~0008356	To help speed up the process of evaluating the tool, please make sure to include the following information (the more information you include, the more beneficial it will for us): [Name] - The name of the tool [Version] - What version of the tool should be added? --- If it uses source control (such as git), please make sure there is a release to match (e.g. git tag) [Homepage] - Where can the tool be found online? Where to go to get more information? [Download] - Where to go to get the tool? [Author] - Who made the tool? [Licence] - How is the software distributed? What conditions does it come with? [Description] - What is the tool about? What does it do? [Dependencies] - What is needed for the tool to work? [Similar tools] - What other tools are out there? [How to install] - How do you compile it? [How to use] - What are some basic commands/functions to demonstrate it?

g0tmi1k 2020-03-18 18:07 administrator ~0012492	No response... Closing. Please reopen if the information can be provided.

Date Modified	Username	Field	Change
2017-12-05 11:23	j_jito	New Issue
2017-12-15 23:00	dookie	Note Added: 0007702
2018-01-29 14:38	g0tmi1k	Note Added: 0008356
2018-02-21 09:35	g0tmi1k	Product Version	2017.3 =>
2018-05-08 08:39	g0tmi1k	Summary	Addrwatch: This is used to monitor network and log discovered ethernet/ip pairings. => Addrwatch - This is used to monitor network and log discovered ethernet/ip pairings.
2020-03-18 18:07	g0tmi1k	Status	new => closed
2020-03-18 18:07	g0tmi1k	Resolution	open => suspended
2020-03-18 18:07	g0tmi1k	Note Added: 0012492