Security Basics mailing list archives
Re: Sniffing
From: Devilscrow Sr <devilscrow () gawab com>
Date: Tue, 16 Dec 2003 02:13:42 +0530
Hi, Comments inline..... Shah H (Comp) wrote:
Yes you can capture traffic on your switch, but if you use conventional sniffers then you would receive only what is sent to you, unless you are using technologies like span / port mirror etc. The other way to sniff on your switch would be to use tools like dsniff / ettercap etc. These tools use cache poisoning techniques to get their way thru. To read more .... google is you friend.1) On a Switched Network can Sniffers capture Network Traffic only for the switch it is connected to switch or for all the switches on the network?
Yes sinffing can be detected. Well evading detection would mean sniffing with your adapter running normally (!= promiscuous)2) Can Sniffing be detected using a Network Intrusion Detection System and if yes then are there any Sniffing ways which are not detected by NDIS?
-dev --------------------------------------------------------------------------- ----------------------------------------------------------------------------
Current thread:
- Sniffing Shah H (Comp) (Dec 15)
- Re: Sniffing Devilscrow Sr (Dec 15)
- RE: Sniffing Zachary Mutrux (Dec 16)
- <Possible follow-ups>
- RE: Sniffing Timothy Donahue (Dec 15)
- Re: Sniffing H Carvey (Dec 15)
- Re: Sniffing Jimi Thompson (Dec 17)