Накидайте пожалуйста статей/мануалов да и вообще любой полезной информации по снифферам. На форуме покопался, но похожих топиков не нашел. Заранее благодарю.
-
XSS.stack #1 – первый литературный журнал от юзеров форума
Снифферы
- Автор темы union
- Дата начала
Packet sniffer basics for network troubleshooting
Capturing packets with a free tool like tcpdump is an essential skill that you need to acquire as a sysadmin. Anthony Critelli shows you the ropes.
www.redhat.com
Сниферы цц или чего?
Конкретизируй
First of all, you need to have a complete understanding of what a sniffer is to use it effectively. In simple terms, a sniffer is a tool and method used for capturing and analyzing network traffic. Essentially, when data passes through a network, a sniffer can capture and show it to you, allowing you to see what information is being transmitted over the network. There are two modes:
Promiscuous Mode In this mode, the network interface card captures all packets passing through the network, regardless of their destination. This mode is typically used with sniffing
Non-promiscuous Mode In this mode, only the packets directly addressed to the system are captured. Now, let’s look at the common types of attacks briefly: Packet Sniffing (In this attack, the attacker listens to and collects information from the packets passing through the network.), Session Hijacking (Here, the attacker gains access to a user’s session and can steal or manipulate the information), Man-in-the-Middle (MITM) (In this attack, the attacker positions themselves between two servers to intercept and modify communications.) and some of the tools you can use for these tasks include:
Wireshark , Tcpdump , Ettercap and for a deeper understanding, you might want to refer to books and educational courses to gain more comprehensive knowledge.
Books :
Promiscuous Mode In this mode, the network interface card captures all packets passing through the network, regardless of their destination. This mode is typically used with sniffing
Non-promiscuous Mode In this mode, only the packets directly addressed to the system are captured. Now, let’s look at the common types of attacks briefly: Packet Sniffing (In this attack, the attacker listens to and collects information from the packets passing through the network.), Session Hijacking (Here, the attacker gains access to a user’s session and can steal or manipulate the information), Man-in-the-Middle (MITM) (In this attack, the attacker positions themselves between two servers to intercept and modify communications.) and some of the tools you can use for these tasks include:
Wireshark , Tcpdump , Ettercap and for a deeper understanding, you might want to refer to books and educational courses to gain more comprehensive knowledge.
Books :
docos/O'Reilly - Network Security Assessment (2nd Edition).pdf at master · nabz0r/docos
Network Security docos. Contribute to nabz0r/docos development by creating an account on GitHub.
github.com
- Автор темы
- Добавить закладку
- #5