IDS mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Counter detect Network Sniffer

From: Mike Hoskins <mike () adept org>
Date: Sun, 22 Feb 2004 15:42:35 -0800 (PST)
On Thu, 19 Feb 2004, [big5] Bill Mok wrote:

Is there any method to detect one using sniffer, say
ethereal, in the same network?


one possibility,

http://www.securiteam.com/tools/AntiSniff_-_find_sniffers_on_your_local_network.html

see also,

http://www.securiteam.com/unixfocus/Detecting_sniffers_on_your_network.html

but the URL for CPM has changed,

ftp://coast.cs.purdue.edu/pub/tools/unix/sysutils/cpm/
Carnegie Mellon University, cpm
Abstract: Check for network interfaces in promiscuous mode.

however it is not network-based, so you probably need some of the other
utilities mentioned.  googling for 'detect sniffer' yielded useful results
for me...

-m

---------------------------------------------------------------------------
Free trial: Astaro Security Linux -- firewall with Spam/Virus Protection

Protect your network with the comprehensive security solution that integrates 
six applications for ease of use and lower TCO.

Firewall - Virus protection - Spam protection - URL blocking - VPN
- Wireless security.

Download 30-day evaluation at:
http://www.securityfocus.com/sponsor/Astaro_focus-ids_040219
---------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: