RFC 826 defines exactly the 28-byte layout you're building, and tools like arping and arp-scan send this same broadcast frame to discover hosts on a LAN. The lack of authentication in ARP is also why ettercap and arpspoof can perform man-in-the-middle attacks simply by broadcasting forged replies that poison a victim's ARP cache.