Your SlideShare is downloading. ×
TCPdump-Wireshark
Upcoming SlideShare
Loading in...5
×

Thanks for flagging this SlideShare!

Oops! An error has occurred.

×

Introducing the official SlideShare app

Stunning, full-screen experience for iPhone and Android

Text the download link to your phone

Standard text messaging rates apply

TCPdump-Wireshark

3,106
views

Published on

Published in: Technology

0 Comments
3 Likes
Statistics
Notes
  • Be the first to comment

No Downloads
Views
Total Views
3,106
On Slideshare
0
From Embeds
0
Number of Embeds
4
Actions
Shares
0
Downloads
156
Comments
0
Likes
3
Embeds 0
No embeds

Report content
Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
No notes for slide

Transcript

  • 1.  
  • 2. Line ups: Amar The Rock Anil The Assassin Harsh The Conductor Atomic Ant Ganeshan Terrible Tabrez Himanshu The Wonder Kid Pavan The Powerhouse Manjunath The Spark
  • 3.  
  • 4.
    • Introduction. 1. Introduction.
    • Prerequisite – TCP/IP model. 2. Installation.
    • Installation. 3. Analysis.
    • Commands
    • -------------------------------------------------Demo-----------------------------------------------------------
    • -----------------------------------------Packet Analysis-------------------------------------------------------
    • ---------------------------COMPARISON B/W TCPdump and NPA--------------------------------------
    • ----------------------------------------- Acknowledgement--------------------------------------------------
  • 5. What is TCPdump???? Characteristics of TCPdump How and where is it used????
  • 6. Transmission Media
  • 7.
    • TCP dump can be installed in many ways in Linux(Ubuntu):
    • Synaptic Packet Manager
    • Searching through in Synaptic Packet Manager for tcpdump.
    • Downloading and installing from the provided options.
    • Through Terminal
    • Terminal is to be opened.
    • sudo su -> prompts for a password and please do enter it.
    • #apt –get install tcpdump
  • 8. #t #tcpdump #
  • 9. 10/26/09 #tcpdump -v
  • 10. 10/26/09 #tcpdump -n
  • 11. 10/26/09 #tcpdump -D
  • 12. 10/26/09 #tcpdump -q
  • 13. 10/26/09 #tcpdump udp
  • 14. 10/26/09
  • 15.  
  • 16. NETWORK PROTOCAL ANALIYSIS DEFINITION ? INTRODUCTION TO WIRESHARK FEATURES OF WIRESHARK WHY IS WIRESHARK PREFERED OVER TCPDUMP ?
  • 17.
    • Computer s/w or h/w, intercepts & logs traffic passing over the network
    • Captures packets, decodes & analyzes contents
    • A network Analyzer is used for
        • Troubleshooting problems on the network
        • Analyzing the performance of a network to discover bottlenecks
        • Network intrusion detection
        • Analyzing the operations of applications
  • 18. It is a packet sniffer Computer application Functionality is very similar to tcpdump Has a GUI front-end and many more information sorting and filtering options
  • 19. Download and install
  • 20. # apt-get install wireshark
  • 21. 10/26/09
  • 22. 10/26/09
  • 23. This checkbox allows you to specify that Wireshark should put the interface in promiscuous mode when capturing. If you do not specify this, Wireshark will only capture the packets going to or from your computer (not all packets on your LAN segment).
  • 24. Exposing VOIP problems Supports Malware Detection Helps recognize DOS attack Downloading FLV files
  • 25. 10/26/09
  • 26. 10/26/09 Here is a quick reference for TCP flags:
  • 27. 10/26/09 4510 0068 7e87 4000 4006 3862 c0a8 011e c0a8 0128 0016 0479 b6c8 a8de 621e 87db 5018 4470 1813 0000 e492 152f 23c3 8a2b 4ee7 dbf8 0d48 88e8 0110 2b01 4295 39f4 52c9 a05b 31d7 e3ae 1c62 2dbd d955 d604 b5d2 63d1 8fbc 4ab7 1615 b382 571c 70e0 a368 a03f 425b 6211
  • 28. 10/26/09 TCPdump Network Protocol Analyzer No Proper Interface Decent Graphical User Interface Uncontrolled Output Decently Sorted Output It is an old tool More modern tool No Graph Graph can be viewed Have to remember all the commands All commands are available in the GUI Not user friendly, but hardcore programmer friendly User Friendly
  • 29. 10/26/09
  • 30. 10/26/09 10/26/09 We thank our referee(s) for the game, we invite your suggestions and comments. For audience/fans, a post match press conference will be held which is for questions on the match…. Thank you