hello.

I am very interested in learning how to use sniffers and to understand the filtrate of packets. In essence I look for some manual or tutorial who can step by step explain his process.

I have read previous posts about snifers and have looked for in google, both sources have not given the information that I need. thanks

I don't know what OS you are using or planning to use but you might check out Ethereal. http://www.ethereal.com/ Multi-platform.

You can get it here http://www.ethereal.com/download.html

Documentation on how to use it can be found here. http://www.ethereal.com/docs/

You can also get the source code and modify it if feel that inclined.

If you want a manual to take with you, you might check out the publications here.
http://www.ethereal.com/publications.html

Nothing but meat and potatoes...

Ciau...

digitalk2003

"Give a man a fish and he can eat for one night. Teach him to fish and he can eat for a lifetime."

Sniffer Pro is by far the best sniffer I have used. It is the best at taking all the data and turning it into something that you can understand.

Ethereal is sweet too!

it really depends on what you want to do. If you are just trying to grab packets ethereal is just fine.

If you are trying to do some sort of analysis get sniffer pro. Its a Network Associates product.

Hope this helps.

phase

hello, sorry to write this here i just cant post a new subject..
i need a good self extracting making program that got a option to execute more then 1 command when the extraction of the files is complete and that it can copy it self into the extraction dir..

hope my english was clear enough

why dont you just bind the exe, or just program the extra commands into the executable.

You also might check out h**p://www.oxid.it . They have a good sniffer called cain that strips out non-essential information, and shows you exactly what info is being sent. It's scary how much info is being sent plaintext without you knowing it.

My fav is dsniff, nice arppoisoning module, collecting loads a user/pass combos....
Also quite funny: the webspyfeature

i agree sniffer pro it rocks

why i like it.. just run it .. and you can find very one.. i think it's not possible to stealth with this :D:

I like cain and Packetyzer Both need the WinPcap to work but they sniff what you need. If your looking for passwords and stuff use cain if you realy need a protocal sniffer then use Packetyzer. Also if you want to sniff WiFi use Net Stumbaler or Airsnare. Just my 2 cents....


Slimjim100

Check this out. Some very usefull info about sniffers:
http://www.robertgraham.com/pubs/sniffing-faq.html

thx's for the info guys . just what i needed thx's.

thanks qcred11 very cool info