Network sniffing yog siv cov cuab yeej software, hu ua network sniffer, uas saib xyuas lossis hnia cov ntaub ntawv ntws hla lub khoos phis tawj network txuas hauv lub sijhawm. Cov cuab yeej software no yog ib qho software uas muaj tus kheej lossis cov cuab yeej kho vajtse nrog cov software tsim nyog lossis firmware.
Network Sniffer yog dab tsi?
Network sniffers nqa snapshot luam ntawm cov ntaub ntawv ntws hla lub network yam tsis tau hloov pauv lossis hloov pauv. Qee cov sniffers ua haujlwm tsuas yog nrog TCP / IP pob ntawv, tab sis cov cuab yeej ntse dua ua haujlwm nrog ntau lwm cov txheej txheem network thiab hauv qib qis, suav nrog Ethernet thav duab.
xyoo dhau los, sniffers yog cov cuab yeej siv tshwj xeeb los ntawm cov kws tshaj lij network engineers. Niaj hnub no, txawm li cas los xij, nrog cov software muaj pub dawb hauv lub vev xaib, lawv kuj nrov nrog cov neeg siv internet thiab cov neeg xav paub txog kev sib txuas.
Network sniffers qee zaum hu ua network probes, wireless sniffers, Ethernet sniffers, packet sniffers, packet analyzers, lossis yooj yim snoops.
Yuav ua li cas Packet Analyzers siv
Muaj ntau daim ntawv thov rau pob ntawv sniffers. Feem ntau pob ntawv sniffers tuaj yeem siv tsis tsim nyog los ntawm ib tus neeg thiab rau qhov laj thawj raug cai los ntawm lwm tus.
Ib qho kev pab cuam uas ntes cov passwords, piv txwv li, tuaj yeem siv los ntawm hacker, tab sis tib lub cuab yeej yuav raug siv los ntawm tus thawj tswj hwm network txhawm rau nrhiav kev txheeb xyuas network xws li muaj bandwidth.
Network sniffing kuj yog siv los kuaj firewall lossis web filters, thiab los daws teeb meem cov neeg siv khoom / server kev sib raug zoo.
How Network Sniffing Works
Ib pob ntawv sniffer txuas nrog txhua lub network cuam tshuam tag nrho cov ntaub ntawv ntws hla lub network.
Ntawm thaj chaw hauv cheeb tsam network (LAN), cov khoos phis tawj feem ntau sib txuas lus ncaj qha nrog lwm lub khoos phis tawj lossis cov khoom siv hauv lub network. Txhua yam txuas nrog lub network ntawd raug rau tag nrho cov tsheb khiav ntawd. Khoos phib tawj raug programmed kom tsis quav ntsej tag nrho cov kev sib txuas hauv network tsis tau npaj rau nws.
Network sniffing software qhib rau txhua lub tsheb los ntawm kev qhib lub khoos phis tawj lub network interface card (NIC) kom mloog cov tsheb khiav ntawd. Lub software nyeem cov ntaub ntawv ntawd thiab ua kev tshuaj xyuas lossis rho tawm cov ntaub ntawv ntawm nws.
Thaum nws tau txais cov ntaub ntawv network, software ua cov haujlwm hauv qab no rau nws:
- Cov ntsiab lus, lossis ib pob ntawv (ntu ntawm cov ntaub ntawv network), raug kaw.
- Qee lub software tsuas yog sau cov kab ntawv header ntawm cov ntaub ntawv kom txuag chaw.
- Captured network data is decoded and formatted kom tus neeg siv tau saib cov ntaub ntawv.
- Packet sniffers txheeb xyuas qhov yuam kev hauv kev sib txuas lus hauv network, daws teeb meem kev sib txuas hauv network, thiab rov tsim kho tag nrho cov ntaub ntawv xa mus rau lwm lub khoos phis tawj.
- Qee lub network sniffing software khaws cov ntaub ntawv rhiab zoo li lo lus zais, tus lej PIN, thiab cov ntaub ntawv ntiag tug.
Yuav Ua Li Cas Thwart Network Sniffer Attacks
Yog tias koj txhawj xeeb txog lub network sniffing software spying ntawm network tsheb los ntawm koj lub computer, muaj txoj hauv kev los tiv thaiv koj tus kheej.
Tseem muaj kev coj ncaj ncees ib tus neeg yuav xav tau siv sniffer software, xws li thaum tus thawj tswj hwm lub network saib xyuas lub network khiav.
Thaum cov thawj coj hauv network txhawj xeeb txog kev siv cov cuab yeej no hauv lawv lub network, lawv siv cov tshuaj tiv thaiv sniff los tiv thaiv kev tawm tsam sniffer. Qhov no txhais tau hais tias cov koom tes sib koom tes feem ntau muaj kev nyab xeeb.
Txawm li cas los xij, nws yooj yim kom tau txais thiab siv sniffer software rau cov laj thawj phem, uas ua rau nws siv tsis raug cai tawm tsam koj lub tsev internet ua rau muaj kev txhawj xeeb. Nws yuav yooj yim heev rau ib tug neeg los txuas xws li software txawm mus rau lub tuam txhab computer network.
Yog tias koj xav tiv thaiv koj tus kheej los ntawm ib tus neeg soj xyuas hauv koj lub tsheb khiav hauv is taws nem, siv lub VPN uas encrypts koj cov tsheb khiav hauv internet. Koj tuaj yeem kawm paub txhua yam txog VPNs, thiab cov chaw muab kev pabcuam VPN koj tuaj yeem siv los tiv thaiv koj tus kheej.
Network Sniffer Tools
Wireshark (yav tas los hu ua Ethereal) tau lees paub dav raws li lub ntiaj teb nyiam tshaj plaws hauv ntiaj teb sniffer. Nws yog daim ntawv thov pub dawb, qhib qhov chaw uas qhia cov ntaub ntawv tsheb nrog cov xim-coding los qhia tias tus txheej txheem twg tau siv los xa nws.
Ntawm Ethernet tes hauj lwm, nws cov neeg siv interface qhia ib tus thav ntawv hauv ib daim ntawv teev npe thiab cov ntsiab lus los ntawm cov xim sib txawv txawm tias lawv raug xa los ntawm TCP, UDP, lossis lwm yam kev cai.
Wireshark kuj pab pawg cov kwj xa rov qab los ntawm qhov chaw thiab qhov chaw (uas yog sib xyaw ua ke nrog lub sijhawm nrog kev tsheb los ntawm lwm qhov kev sib tham).
Wireshark txhawb nqa tsheb khiav los ntawm kev pib / nres lub khawm khawm interface. Cov cuab yeej tseem muaj cov kev xaiv lim uas txwv cov ntaub ntawv dab tsi tshwm sim thiab suav nrog hauv kev ntes. Qhov ntawd yog qhov tseem ceeb vim tias feem ntau cov tsheb khiav hauv network muaj cov lus tswj hwm niaj hnub uas tsis nyiam.
Ntau qhov kev soj ntsuam software sib txawv tau tsim nyob rau ntau xyoo. Nov yog qee qhov piv txwv:
- tcpdump (ib cov cuab yeej hais kom ua rau Linux thiab lwm lub tshuab ua haujlwm raws Unix)
- CloudShark
- Cain thiab Abel
- Microsoft Message Analyzer
- CommView
- Omnpeek
- Capsa
- Ettercap
- PRTG
- Free Network Analyzer
- NetworkMiner
- IP cuab yeej
Qee yam ntawm cov cuab yeej cuab tam network no yog pub dawb thaum lwm tus nqi lossis muaj kev sim dawb. Tsis tas li ntawd, qee qhov ntawm cov kev pabcuam no tsis tau khaws cia lossis hloov kho, tab sis lawv tseem muaj rau rub tawm.
Teeb meem nrog Network Sniffers
Sniffer cov cuab yeej muaj txoj hauv kev zoo los kawm seb cov txheej txheem network ua haujlwm li cas. Txawm li cas los xij, lawv kuj muab kev nkag tau yooj yim rau qee cov ntaub ntawv ntiag tug xws li network passwords. Tshawb xyuas nrog cov tswv kom tau txais kev tso cai ua ntej siv tus sniffer ntawm lawv lub network.
Network probes tsuas yog cuam tshuam cov ntaub ntawv los ntawm tes hauj lwm lawv lub khoos phis tawj tswj hwm txuas nrog. Ntawm qee qhov kev sib txuas, sniffers tsuas yog ntes cov tsheb khiav mus rau qhov tshwj xeeb network interface. Txawm li cas los xij, qhov tseem ceeb tshaj plaws uas yuav tsum nco ntsoov yog tias leej twg tab tom nrhiav siv lub network sniffer los soj ntsuam ntawm kev khiav tsheb yuav muaj lub sijhawm nyuaj ua li ntawd yog tias cov tsheb khiav nkag mus.
FAQ
Koj tuaj yeem qhia tau li cas yog tias ib tus neeg nqus koj lub network?
Nws tuaj yeem nyuaj rau kev ntes cov sniffers vim lawv feem ntau nyob twj ywm los ntawm kev sau cov ntaub ntawv. Tab sis yog tias tus neeg sniffer tau nruab rau hauv lub computer, kev khiav tsheb ntxiv tuaj yeem ceeb toom koj rau tus neeg sniffer lub xub ntiag. Xav txog kev siv cov kev pab cuam software uas pom cov sniffers, xws li Anti-Sniff, Sniff Detection, ARP Watch, lossis Snort.
Cov ntaub ntawv thiab cov ntaub ntawv zoo li cas tuaj yeem pom los ntawm kev siv pob ntawv sniffer?
Ib pob ntawv sniffer yog ib qho cuab yeej tsim nyog network engineer lossis antivirus feature, tab sis nws kuj tuaj yeem yog hacker cov cuab yeej, uas tshwm sim raws li kev xa email tsis zoo. Cov pob ntawv tsis zoo tuaj yeem sau cov passwords thiab cov ntaub ntawv nkag mus, ntxiv rau saib xyuas tus neeg siv lub vev xaib mus ntsib thiab ua haujlwm. Ib lub lag luam tuaj yeem siv cov pob ntawv raug cai sniffer txhawm rau txheeb xyuas cov tsheb khiav mus rau malware lossis khaws cov neeg ua haujlwm siv network.