Network, Sniffing

How to defend against sniffers

sniffer is a piece of software that can intercept and log all of the traffic passing over a network. The sniffer captures each packet, decodes the packet’s data and analyzes its content. more..

The packet sniffers can be used to:

  • Analyze network problems
  • Detect network intrusion attempts
  • Monitor WAN bandwidth
  • Monitor network usage
  • Monitor WAN and endpoint security status
  • Gather and report network statistics
  • Filter suspect content from network traffic
  • Spy on other network users and collect sensitive information such as passwords
  • Debug client/server communications
  • Debug network protocol implementations
  • and many more..

To defend against sniffers, you should:

  • Use encryption when transmitting data (SSL, SSH, SCP, HTTPS, SFTP)
  • Use IPv6 instead of IPv4
  • Use PGP
  • Use VPN, IPSec
  • Use S/MIPE, TLS
  • Prefer switches instead of hubs

Known Sniffers:

How to implement my own sniffer: