Sniffing In Ethical Hacking (Cyber Security).pptx

VIGNESHSIVAKUMAR35 0 views 11 slides Sep 29, 2025
Slide 1
Slide 1 of 11
Slide 1
1
Slide 2
2
Slide 3
3
Slide 4
4
Slide 5
5
Slide 6
6
Slide 7
7
Slide 8
8
Slide 9
9
Slide 10
10
Slide 11
11

About This Presentation

Sniffing In Ethical Hacking Explained

Size: 1.09 MB
Language: en
Added: Sep 29, 2025
Slides: 11 pages

Slide Content

SNIFFING Class : III B.Sc Cyber Security Subject : Ethical Hacking Subject Code : XCI503B Presented By Mr. S.Vignesh (AP/CS) Department of Computer Science

What is Sniffing ? Process of monitoring and capturing network data. Uses sniffers (software tools) Requires NIC in promiscuous mode to capture all packets

TYPES OF SNIFFING Passive sniffing : On hubs (outdated now). Captures all traffic in a collision domain. Hub : Send to All Devices Active sniffing : On switched networks Uses techniques like ARP spoofing or port mirroring (SPAN) Switch : Send by address

Port Mirroring / SPAN SPAN (Switched Port Analyzer) = P ort M irroring. Forwards all switch traffic to a designated port Useful for sniffers & IDS tools (e.g., Snort )

Tools for Sniffing Range from free to <$1,000 Wireshark → most popular open-source sniffer Other tools : RSA NetWitness → deep packet inspection OmniPeek → commercial sniffer with GUI Dsniff suite → includes Filesnarf , Mailsnarf , Urlsnarf , Webspy TCPdump → command-line Linux sniffer WinDump → Windows port of TCPdump

Wireshark Features Views of captured traffic : Summary view → one-line-per-packet Detail view → expand packet fields Hex view → raw packet data in hex

Filters: Capture filters → define traffic before capture (e.g., HTTP only) Display filters → refine results after capture Example: ip.addr ==192.168.123.1 arp , http, icmp tcp.port ==23 tcp.flags.reset ==1

SNIFFING COUNTERMEASURES Static ARP entries (not feasible on large networks) Port security → restricts allowed MAC addresses per port Dynamic ARP Inspection (DAI) → validates ARP packets (Cisco feature) IP Source Guard → prevents IP spoofing on untrusted Layer 2 ports DNSSEC (RFC 4035) → digitally signs DNS replies to prevent DNS spoofing

SPOOFING Spoofing is a technique where an attacker pretends to be someone or something else by falsifying data, with the goal of tricking systems or users into trusting them. It’s basically impersonation in the digital world .
Tags
Categories
General
Download
Download Slideshow Get the original presentation file
Quick Actions
Statistics
  • Views 0
  • Slides 11
  • Age 63 days
Related Slideshows
Pray For The Peace Of Jerusalem and You Will Prosper 22
Pray For The Peace Of Jerusalem and You Will Prosper
RodolfoMoralesMarcuc
30 views
Don_t_Waste_Your_Life_God.....powerpoint 26
Don_t_Waste_Your_Life_God.....powerpoint
chalobrido8
32 views
VILLASUR_FACTORS_TO_CONSIDER_IN_PLATING_SALAD_10-13.pdf 31
VILLASUR_FACTORS_TO_CONSIDER_IN_PLATING_SALAD_10-13.pdf
JaiJai148317
30 views
Fertility awareness methods for women in the society 14
Fertility awareness methods for women in the society
Isaiah47
29 views
Chapter 5 Arithmetic Functions Computer Organisation and Architecture 35
Chapter 5 Arithmetic Functions Computer Organisation and Architecture
RitikSharma297999
26 views
syakira bhasa inggris (1) (1).pptx....... 5
syakira bhasa inggris (1) (1).pptx.......
ourcommunity56
28 views
View More in This Category