Announcement

Collapse
No announcement yet.

sniffing traffic remotely?

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • sniffing traffic remotely?

    My question is as such.

    1.Is it possible to sniffer traffic from Computer A to Computer B?

    2.In the same subnet? different subnet?
    114.114.1.1 -> 211.211.1.1

    3. I know cain and abel doesn't do this just local but does dsniff or any other program?

    4. How did they sniff the passwords from the 'wall of sheep' at defcon?

  • #2
    Give Ethereal a shot, but as far as the windows platform goes, I havnt found any better that are free. In linux I have been playing with snort, ethereal, and etherape.
    ~:CK:~
    I would like to meet a 1 to keep my 0 company.

    Comment


    • #3
      oh oh oh ... you have _got_ to taste these... oh so yummy for your tummy...

      ettercap
      http://ettercap.sourceforge.net/
      ngrep
      http://ngrep.sourceforge.net/

      Comment


      • #4
        Originally posted by blackwave
        oh oh oh ... you have _got_ to taste these... oh so yummy for your tummy...

        ettercap
        http://ettercap.sourceforge.net/
        That program is sweet and dangerous, depending what end of it you are on.
        ~:CK:~
        I would like to meet a 1 to keep my 0 company.

        Comment


        • #5
          Originally posted by ck3k
          That program is sweet and dangerous, depending what end of it you are on.
          And a great way to annoy coworkers by setting off the IDS at your workplace with all the ARP spam!
          45 5F E1 04 22 CA 29 C4 93 3F 95 05 2B 79 2A B0
          45 5F E1 04 22 CA 29 C4 93 3F 95 05 2B 79 2A B1
          [ redacted ]

          Comment


          • #6
            Originally posted by newbb
            My question is as such.

            1.Is it possible to sniffer traffic from Computer A to Computer B?
            Given the subject was "sniffing traffic remotely", the answer is, "probably not in most cases (or for most people)." It's always possible to sniff traffic between two machines, for the obvious reason that the traffic has to traverse some sort of medium to get from A to B, and someone can tap into that medium and simply copy the bits as they pass by.

            I believe the question you really wanted to ask is, "Since it's always possible to sniff traffic between two machines, how does one get access to the transport medium?"

            The short answer is you don't, unless:

            A. You have a right to do so (in which case, just plug in) or,

            B. You have about 12-18 months of free time that you don't mind spending in a minimum-security corrections facility.

            Comment

            Working...
            X