DSniff

DSniff

Infobox Software
name = dSniff
developer = Dug Song
latest_release_date =release date and age|2000|12|17
latest release version = 2.3
operating_system = Unix-like
genre = Packet sniffer
license =
website = [http://www.monkey.org/~dugsong/dsniff/ www.monkey.org/~dugsong/dsniff/]

dSniff is a packet sniffer and set of traffic analysis tools written by Dug Song, a computer security researcher at the University of Michigan. Unlike tcpdump and other low-level packet sniffers, dSniff also includes tools that decode information (passwords, most infamously) sent across the network, rather than simply capturing and printing the raw data, as do generic sniffers like Wireshark and tcpdump. The name dSniff refers both to the package of such tools and one eponymous tool ("dSniff") included within. "dSniff" the tool decodes passwords sent in cleartext across a switched or unswitched Ethernet network. Song's webpage explains that he wrote dSniff with "honest intentions --- to audit my own network, and to demonstrate the insecurity of most network application protocols," although it could easily be used by miscreants to steal passwords.

Other tools included with the package include:
*"webspy", a program which intercepts URLs sent by a specific IP address and directs your web browser to connect to the same URL. This results in your browser opening up the same web pages as the target being sniffed.
*"sshmitm" and "webmitm", programs designed to intercept SSH version 1 communications and web traffic respectively with a man-in-the-middle attack
*"msgsnarf", a program designed to intercept Instant Messenger and IRC conversations
*"macof", a program designed to break poorly-designed Ethernet switches by flooding them with packets with bogus MAC addresses (MAC flooding).

References

* [http://www.monkey.org/~dugsong/dsniff/ Official website]
* [http://www.monkey.org/~dugsong/dsniff/faq.html dSniff FAQ]

ee also

*Comparison of packet sniffers
*Network tap


Wikimedia Foundation. 2010.

Игры ⚽ Нужна курсовая?

Look at other dictionaries:

  • dSniff — Developer(s) Dug Song Stable release 2.3 / December 17, 2000; 10 years ago (2000 12 17) Operating system Unix like …   Wikipedia

  • DSniff — est un outil d analyse du trafic réseau, principalement un packet sniffer, écrit par Dug Song, un chercheur en sécurité informatique de l Université du Michigan. Liens externes (en) Site officiel de dSniff (en) FAQ sur dSniff …   Wikipédia en Français

  • dSniff — est un outil d analyse du trafic réseau, principalement un packet sniffer, écrit par Dug Song, un chercheur en sécurité informatique de l Université du Michigan. Liens externes (en) Site officiel de dSniff (en) FAQ sur dSniff …   Wikipédia en Français

  • Comparison of packet analyzers — The following tables compare general and technical information for several packet analyzer software utilities. Please see the individual products articles for further information. This article is not all inclusive or necessarily up to date.… …   Wikipedia

  • Packet analyzer — A packet analyzer (also known as a network analyzer, protocol analyzer, or sniffer, or for particular types of networks, an Ethernet sniffer or wireless sniffer) is a computer program or a piece of computer hardware that can intercept and log… …   Wikipedia

  • Man-in-the-middle attack — Not to be confused with Meet in the middle attack. In cryptography, the man in the middle attack (often abbreviated MITM), bucket brigade attack, or sometimes Janus attack, is a form of active eavesdropping in which the attacker makes independent …   Wikipedia

  • ARP spoofing — Address Resolution Protocol (ARP) spoofing, also known as ARP poisoning or ARP Poison Routing (APR), is a technique used to attack an Ethernet wired or wireless network which may allow an attacker to sniff data frames on a local area network… …   Wikipedia

  • Password cracking — is the process of recovering passwords from data that has been stored in or transmitted by a computer system. A common approach is to repeatedly try guesses for the password. The purpose of password cracking might be to help a user recover a… …   Wikipedia

  • Knoppix STD — (Security Tools Distribution) is a Live CD Linux distribution based on Knoppix that focuses on computer security tools. It includes GPL licensed tools in the following categories: authentication, password cracking, encryption, forensics,… …   Wikipedia

  • NUbuntu — Infobox OS name = nUbuntu Linux caption = nUbuntu Formula One developer = Brendan Almonte family = Linux source model = FOSS latest release version = 8.04 Alpha latest release date = release date|2008|7|16 kernel type = Monolithic kernel ui =… …   Wikipedia

Share the article and excerpts

Direct link
Do a right-click on the link above
and select “Copy Link”