Page 1 of 2 12 LastLast
Results 1 to 10 of 20

Thread: AntiSniff program... is there any Better?

  1. #1
    Junior Member
    Join Date
    Apr 2004
    Posts
    7

    AntiSniff program... is there any Better?

    I try AntiSniff v1.02.1 under Windows 2000 to catch who steal my passwords on LAN but when I start scan my PC rebooted.
    Then I start program under XP and it told that it can’t find network card or something I don’t remember...
    Is there anyone for whom this program works? Or is there any analog programs to catch who’s sniffing packets?

  2. #2
    You might need winpcap installed, but I thought it wasn't reasonably possible to find a sniffer on a network.

  3. #3
    Junior Member
    Join Date
    Apr 2004
    Posts
    7
    Where can i find it i try google but it show so many different results so i dont know... this prog have homepage?

    I try this one http://winpcap.polito.it/default.htm but dunno what it do, anyway it reboots after i run antisniff.

  4. #4
    Senior Member
    Join Date
    Jun 2002
    Posts
    311
    you can get the winpcap driver here-

    http://winpcap.polito.it/

  5. #5
    Junior Member
    Join Date
    Apr 2004
    Posts
    7
    But what it do i dont understand anything from site.

  6. #6
    Banned
    Join Date
    May 2003
    Posts
    1,004
    Passive monitoring, be it a network sniffer, wiretap, tempest monitoring, microwave side-lobe, etc tend to be infeasible to detect.

    As a rule the only way to detect is to verify all the weak points secure (every network node, every inch of cable and perhaps the area around the cables, everything that might be emiting anything useful, checking all the potential side-lobe access hot spots to ensure they are monitoring equipment free)

    With all areas of security, assume a compromise and limit its effects. (application isolation, personel seperation of duties, or in this case encrypt the data in such a manner to render a monitor useless) Other anti-monitoring techniques are fundementally flawed and shouldn't have resources wasted on them. (same for all security models that attempt to prevent the inevitable rather than contain it)

    catch

  7. #7
    Junior Member
    Join Date
    Apr 2004
    Posts
    7
    Well i am not expert so i dont know stuff you told me.
    And i am most denfenetly will not search every inch of cable.

  8. #8
    Banned
    Join Date
    May 2003
    Posts
    1,004
    *sigh*

    I really need to make a better point of paying attention to which forum threads on the front page are in.

    jo... you cannot reliably (read "cost effectively") prevent or detect the monitoring of data in transit, so don't worry about it.

    catch

  9. #9
    Just a Virtualized Geek MrLinus's Avatar
    Join Date
    Sep 2001
    Location
    Redondo Beach, CA
    Posts
    7,323
    you cannot reliably (read "cost effectively") prevent or detect the monitoring of data in transit, so don't worry about it.
    How would you define "cost effectively"? Couldn't encryption be used to "prevent" monitoring of data in transit (say through SSH Tunnelling or other methods like VPNs)?
    Goodbye, Mittens (1992-2008). My pillow will be cold without your purring beside my head
    Extra! Extra! Get your FREE copy of Insight Newsletter||MsMittens' HomePage

  10. #10
    Banned
    Join Date
    May 2003
    Posts
    1,004
    Encryption does not prevent or detect monitoring, it merely presents the monitor with (in theory) unusable data. This may seem nitpicky, but I did mention encryption in my first post as a better answer to his situation.

    catch

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •