Post on 19-Jan-2017
TOPIC NAME: PRESENTATION ON NETWORK SNIFFER AND INJECTION TOOL
SUBMITTED BY: SUBMITTED TO:KAPADIA ISSAR PROF. RONAK PATEL(141240106026)CIVIL ENGG. DEPARTMENT
SARDAR PATEL COLLEGE OF ENGINEERING, BAKROL
INDEX Network sniffing• What is network sniffing.• What is network sniffer used for? • Disadvantages of network sniffer.• Example of network sniffer.
Injection tools• Injection• Types of code injection
References
NETWORK SNIFFINGNetwork sniffing is a technique of monitoring every packet that crosses the
network.
WHAT IS NETWORK SNIFFING?
• Process of capturing, decoding, and analyzing network traffic is called network sniffing.
• Network sniffing is a tool that can help you locate network problems by allowing you to capture and view packet level data on your network. The Colasoft Capsa Network sniffer is a powerful network analyser
• A packet sniffer is a software application that uses a network adapter card in promiscuous mode to capture all network packets.
• Typical use of network sniffer is to analyze network traffic and bandwidth utilization, so that underlying troubles in the network can be identified.
• Analyze network problem.• Detect network misuse by internal and external users.• Gain information for effecting network intrusion.• Spy on other network users and collect sensitive information such as log in details.• Gather and report network statistics.• Filter suspect content from network traffic.• Verify internal control system effectiveness( firewall, web filter, access control).
.
WHAT IS NETWORK SNIFFING USED FOR ?
DISADVANTAGES OF NETWORK SNIFFING
With positive uses there are also some negative uses.
Catching password, which is the main reason for most illegal uses of sniffing tools.
Capturing special and private information of transaction, like username, passwords, account.
Some sniffers can even modify target the computer’s information and damage the system.
EXAMPLE OF NETWORK SNIFFERS
• TcpDump : command line packet analyzer(sniffer)• winDump : port of tcpdump for windows.• Wireshark : a GUI based alternative to tcpdump.• Ettercap• Hping• Kismet : for wireless LANs
INJECTION TOOLS
INJECTION
• Injection refers to the process of interfering with an established network connection, by means of constructing packets to appear as if they are part of the normal communication stream.
TYPES OF CODE INJECTION
• SQL Injection: structured query language.• Cross-site scripting• Dynamic evaluation vulnerabilities• Object injection• Remote file injectionShel• Shell injection
THANK YOU....