hacking contest

hacking exploits security forum
hacking
compliance articles
upgrade backup exec
information security consultant
Help - Search - Member List - Calendar
Full Version: Sniffing..
GovernmentSecurity.org > System Security > Beginners Section
OneNight
Aug 13 2003, 12:55 AM
Thx Comsec..

Am i right in thinking that i can use a tool like htis to see who is/was scanning me? Or what kind of connects were/are made and what packets were/are sent? Hmm, like an expanded version of the "netstat -n" command...
I know expanded firewall packages can do this, but i'd like to keep it simple..;

And do you recommend any?

Thx.
EvilGod
Aug 12 2003, 10:55 PM
Can someone tell me more about this thing?
It's a method to defend a network or what?
Can you gimme one or two programs name or URL? smile.gif

Yes.. i know.. too many questions.. but... i really need help on this! biggrin.gif

Thanks in advance for your reply.
ComSec
Aug 12 2003, 11:13 PM
QUOTE (EvilGod @ Aug 12 2003, 10:55 PM)
Can someone tell me more about this thing?
It's a method to defend a network or what?
Can you gimme one or two programs name or URL? smile.gif

Yes.. i know.. too many questions.. but... i really need help on this! biggrin.gif

Thanks in advance for your reply.

here you go...this lot should keep you busy...good luck

tuts from google



Software for the Paranoid LOL had to get that one in wink.gif


sniffer programs

biggrin.gif
ComSec
Aug 13 2003, 01:25 AM

well if your new to sniffing then this program is ideal for newbies...once you get to grips with how they work you can then progress on to other more advanced programs

AnalogX PacketMon allows you to capture IP packets that pass through your network interface - whether they originated from the machine on which PacketMon is installed, or a completely different machine on your network! Once the packet is received, you can use the built in viewer to examine the header as well as the contents, and you can even export the results into a standard comma-delimited file to importing into your favorite program. As if that's not enough, PacketMon has a powerful rule system that allows you to narrow down the packets it captures to ensure you get EXACTLY what you're after, without tons of unrelated information.

Please note, PacketMon is currently only available for Win2000/XP ONLY.

packetmon link
EvilGod
Aug 13 2003, 08:18 AM
thanks man, i will try all these programs

lemme c .. smile.gif
OneNight
Aug 13 2003, 09:45 AM
Thx for that Comsec, i think i have found me a new tool to play with for today smile.gif

Seeing as it also creates nice logs (like with any sniffer i expect) the logs can be fully manipulated in order to show the results you want. Hmm, i think i may even write me a (simple) small mirc script to filter the results somewhat.

And i am gonna try and get to grips with some new terms as well, like a IGMP connection.

And for anyone else reading this, PacketMon is very simple and easy to use. Ideal for beginner sniffers smile.gif
mekros
Aug 13 2003, 09:52 AM
maybe this could also help you... biggrin.gif
OneNight
Aug 13 2003, 11:07 AM
Good link mekros. Thx.
ComSec
Aug 13 2003, 11:25 AM
QUOTE (mekros @ Aug 13 2003, 09:52 AM)
maybe this could also help you... biggrin.gif

thanks for the link...a good read
KuunLB
Aug 14 2003, 02:57 AM
dang.. i found this post and it's the first time my poor little dialup connection has been non-stop downloading on not jsut one file.. but like 5-20 tongue.gif

good info here guys

thanks
mekros
Aug 14 2003, 03:50 AM
glad to share whut i've found...
KuunLB
Aug 14 2003, 04:54 AM
hey comsec

that packetmon link you posted..

is VERY useful.. i can see every little bit of data that does anything my computer is sending and reciveing

thanks mate

dozolax
Dec 20 2003, 03:19 AM
helpful post...thanks
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.
 
Invision Power Board © 2001-2005 Invision Power Services, Inc.