Electronic Books

For example, if the network
link you are using is connected to a network hub, you will be able to see
all traffic going through that hub to all other computers on that hub. If,
however, the network link you are using is connected to a switch, you will
only be able to see traffic specifically destined to your connection. There is
a way to ???sniff??? traffic on a switch to show all traffic to a specific or every
computer on a switch, which will be covered in Chapter 9.
236
Practical Hacking Techniques and Countermeasures
IPDump2 also allows for the saving of the output to a file for later analysis
by typing:
./ipdump2 eth0 >> captured.txt
The IPDump2 application will run all data sent to a file named captured.
txt.
Sniffing Traffic
237
By opening the file with a text editor the contents of the captured.txt file
are ready for analysis.
For Windows
From the directory containing the IPDump2 executable, type:
ipdump2 0
*Note: The interface in this example is 0 as it is the only interface in this virtual
machine. If you have multiple NICs you may wish to use other NICs by
incrementing the number: 1, 2, and so on.
238
Practical Hacking Techniques and Countermeasures
The IPDump2 application will display the packet flow on the screen.
Unless instructed otherwise, the application will continue to run until the Ctrl
plus the C keys are pressed.
IPDump2 also allows for the saving of the output to a file for later analysis
by typing:
.


Pages:
87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111