Sniffers

Detecting Sniffers on Your Network

Sniffers Internet Security Whitepapers

Sniffers are typically passive programs. They put the network interface in promiscuous mode and listen for traffic.

Detection of Promiscuous Nodes Using ARP Packets

Sniffers Internet Security Whitepapers

In the local network, the act of sniffing has been a big thread. Malicious users can easily steal confidential documents and anyone's privacy by sniffing the network. Sniffing causes intrusion into privacy, but it can be done simply by downloading free sniffer software (sniffers) from the Internet and installing them into their personal computer. However, so far there is no good way to detect which PC's are sniffing the network. This documentation will discuss the user of Address Resolution Protocol (ARP) packets to effectively detect malicious users when they are sniffing the network.

IPgrab

Sniffers Internet Security Whitepapers

A packet sniffer is an application layer program that interacts with one or more layer two or layer three kernel modules or device drivers to capture packets on a network. The lower-layer pieces read the packet off the wire, copy it into memory, and provide an API for an application to read it. An application, such as IPgrab, can do whatever it likes with the resulting image of a packet. Packet sniffers have been used for many years to detect network problems, troubleshoot protocols, and detect intruders.

Packet Sniffer Detection with AntiSniff

Sniffers Internet Security Whitepapers

Packet sniffing is a technique of monitoring every packet that crosses the network. A packet sniffer is a piece of software or hardware that monitors all network traffic. The security threat presented by sniffers is their ability to capture all incoming and outgoing traffic, including clear-text passwords and usernames or other sensitive material. While packet sniffers can be fully passive, some aren’t, therefore they can be detected. This paper discusses the different methods that AntiSniff uses to detect these sniffing programs.

Sniffers Basics and Detection

Sniffers Internet Security Whitepapers

A sniffer is a program or a device that eavesdrops on the network traffic by grabbing information travelling over a network. Sniffers basically are "Data Interception" technology. They work because the Ethernet was built around a principle of sharing. Most networks use broadcast technology wherein messages for the computer can be read by another computer on that network.