Electronic Books

/ethereal
and pressing
Enter
.
Sniffing Traffic


199
The Ethereal application will now start.
*Note:
Although it is not much to look at right now, this will quickly change. Also,
if you have any problems in configuring or making the executable, please
read the
README
and
INSTALL
files that come with the program. Many
times the problem is simply that there are incorrect versions either mixed or
installed on the computer.
To demonstrate the capabilities of Ethereal click
Capture
, then
Options
.
200


Practical Hacking Techniques and Countermeasures
From the
Options
screen ensure that the correct interface is chosen, select
Enable network name resolution
, and then click
Start
.
A Capture window will now appear identifying the protocols available for
capture, the number of packets for each protocol captured, and the percentage
of overall capture for each protocol.
Sniffing Traffic


201
In this example, I opened an Internet connection to Google and hit the
refresh button a few times to generate some traffic.
I then initiated an FTP connection to another virtual machine and logged
in normally.
I then clicked the
Stop
button.
*Note:
Keep in mind that the traffic you see is connected to a network hub, and you
will be able to see all traffic going through that hub to all other computers
on that hub. If, however, the network link you are using is connected to a
switch, you will only be able to see traffic specifically destined to/from your
connection.


Pages:
76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100