sniffing:
- Generally, sniffing is computer network hacker term.On ethernet data is sent in data packets which includes the sending address(the data being sent) and the address it came from.
- Hackers can use sniffing program to intercept those packets of data and read them.
Sniffer:
- Packet sniffer programs are commonly used by network professionals to help diagnose network issues and also by hackers to capture unencrypted data like passwords and usernames in network traffic.
- Once this information is captured, the hacker can then gain access to the system or network.
Magic behind sniffer:
- The sniffer program tells a computer, specifically its Network Interface Card (NIC), to stop ignoring all the traffic headed to other computers and pay attention to them.
- It does this by placing the NIC in a state known as promiscuous mode. Once a NIC is promiscuous, a status that requires administrative or root privileges, a machine can see all the data transmitted on its segment.
- The program then begins a constant read of all information entering the PC via the network card.
How to protect yourself:
- If you wish to keep information confidential(secure) or are concerned about packet sniffing, it is advised that you work on encrypted protocols and encrypt all sensitive data, such as e-mails, being sent over the Internet or network.
-When sending confidential information over internet such as usernames, passwords ,credit card numbers,etc verify small lock in the bottom right corner of your browser window or in the address bar (as shown below).
- And also making sure the URL begins with https as shown above.
-Another method of protection involves tools, such as antisniff, that scan networks to determine if any NICs are running in promiscuous mode. These detection tools should run regularly, since they act as an alarm of sorts, triggered by evidence of a sniffer.
.png)
.png)
