PRESENTATION ON NET SNIFFER

DEPARTMENT OF COMPUTER SCIENCE AND ENGINEERING

COLLEGE OF ENGINEERING, SCIENCE & TECHNOLOGY

LUCKNOW

By
PUNIT PRAJAPATI
 AIM
This project aims at developing a Network Packet Analyser
Network Packet Analyser is a piece of software that monitors all network
traffic
This is unlike standard network hosts that only receive traffic sent specifically
to them
As data streams flow across the network, the sniffer captures each packet
and eventually decodes and analyzes its content
For network monitoring purposes it may also be desirable to monitor all
data packets in a LAN and to mirror all packets passing through a shared
bus
 Objective
A packet sniffer (also known as a network analyzer or protocol analyzer or, for
particular types of networks, an Ethernet sniffer or wireless sniffer) is computer
software that can intercept and log traffic passing over network.
As data streams flow across the network, the sniffer captures each packet and
eventually decodes and analyzes its content
 PACKET SNIFFERS

Host A Host B
Router A Router B

Packet sniffing is a technique of

monitoring every packet that crosses
the network.
 Uses of Packet Sniffers
Capturing clear-text usernames and passwords
Capturing and replaying Voice over IP telephone conversations
Mapping a network

Breaking into a target computer and installing remotely controlled sniffing

software.

Redirecting communications to take a path that includes the intruders

computer.
Conversion of Network traffic into human readable form.
Network analysis to find the bottlenecks.
Network intrusion detection to monitor for attackers.
 Methods
IP- based

MAC- based

ARP- based
 PORT
port in the internet protocol suite, a port is an end point of communication in an operating
system
certain application are associated with specific port number ranging from 0 to 65535 on
which the services listens for incomeing packets of data
The well knows port (also knows as system ports) are those from 0 through 1023. the
requirement for new assignments in this rang are stricter than for other

There are two types of ports.

1. Physical ports:- USB port , HDMI port
2. Logical ports:- (65535 ports) TCP port ,UDP port
TCP port list
Port 21:-FTP(File transfer protocol)
Port 22 :-SSH(secure shell)
Port 80:- HTTP(Hyper text transfer protocol)
Port 443:-HTTPS(Hyper text transfer protocol Secure
 Network
IP & MAC Packet traffic
Address sniffer information

Level 0 DFD
 Packet
information

Layer
information
Packet
User Start sniffer
Graphical
Representation
Info.

IP&MAC Free Memory

Address in LAN infomation

Level 1 DFD
 PURPOSE
This system is thus very useful to the users and a
network administrator in particular who is
generally responsible for monitoring things on a
network.
 References
http://netsecurity.about.com/cs/hackertools/a/aa121403.htm
http://e-articles.info/e/a/title/Packet-Sniffing:-Sniffing-Tools-Detection-Prevention-Methods/
http://sectools.org/sniffers.html
http://en.wikipedia.org/wiki/Cain_and_Abel_(software)
http://www.authorstream.com/Presentation/chinmayzen-79529-packet-sniffers-education-ppt-
powerpoint/
http://www.youtube.com/watch?v=O00LENbtiIw
Thank you