Antisniffer Options

[versus]

Κύριοι χαίρεται, μήπως μπορεί κάποιος να μου προτείνει κάποιο πρόγραμμα για εντοπισμό προγραμμάτων sniffer τοπικών δικτύων.
Παρακαλώ μόνο εάν έχετε δοκιμάσει κάποιο συγκεκριμένο πρόγραμμα.
Ευχαριστώ εκ των προτέρων.

[www.yourforum.gr]

[title]AntiSniff Beta 2[/title]

Packet sniffers are valuable tools that can offer great insight into what's transpiring on your network. With a packet sniffer in action on a Windows NT network, you can easily watch all user authentication requests and capture that data for later analysis. By the same token, a network intruder can gather that information and use it to penetrate network security.

Packet sniffers operate in promiscuous mode and are difficult to detect without specialized tools. L0pht Heavy Industries' AntiSniff Beta 2 is just such a tool, a product that can detect packet sniffers listening on a network&$151; a good addition to anyone's security toolkit.

How it Works
Packet sniffer detection isn't new, but AntiSniff is unique because it runs on NT. The product exploits a variety of idiosyncrasies in the way the OS handles TPC/IP packets, relying on three test categories: OS specific, DNS, and network latency.

With OS-specific tests, AntiSniff exploits the method NT uses to handle packets by sending a packet to the system using an Ethernet address of FF:00:00:00:00:00 and the IP destination address of the system you want to check. When a network card is operating in promiscuous mode in NT, it will respond to the packet that AntiSniff has sent, revealing that a packet sniffer might be active on the system. . . .


with more info on that, soon