Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.



Published on

Published in: Technology
  • Be the first to comment


  1. 2. Line ups: Amar The Rock Anil The Assassin Harsh The Conductor Atomic Ant Ganeshan Terrible Tabrez Himanshu The Wonder Kid Pavan The Powerhouse Manjunath The Spark
  2. 4. <ul><li>Introduction. 1. Introduction. </li></ul><ul><li>Prerequisite – TCP/IP model. 2. Installation. </li></ul><ul><li>Installation. 3. Analysis. </li></ul><ul><li>Commands </li></ul><ul><li>-------------------------------------------------Demo----------------------------------------------------------- </li></ul><ul><li>-----------------------------------------Packet Analysis------------------------------------------------------- </li></ul><ul><li>---------------------------COMPARISON B/W TCPdump and NPA-------------------------------------- </li></ul><ul><li>----------------------------------------- Acknowledgement-------------------------------------------------- </li></ul>
  3. 5. What is TCPdump???? Characteristics of TCPdump How and where is it used????
  4. 6. Transmission Media
  5. 7. <ul><li>TCP dump can be installed in many ways in Linux(Ubuntu): </li></ul><ul><li>Synaptic Packet Manager </li></ul><ul><li>Searching through in Synaptic Packet Manager for tcpdump. </li></ul><ul><li>Downloading and installing from the provided options. </li></ul><ul><li>Through Terminal </li></ul><ul><li>Terminal is to be opened. </li></ul><ul><li>sudo su -> prompts for a password and please do enter it. </li></ul><ul><li>#apt –get install tcpdump </li></ul>
  6. 8. #t #tcpdump #
  7. 9. 10/26/09 #tcpdump -v
  8. 10. 10/26/09 #tcpdump -n
  9. 11. 10/26/09 #tcpdump -D
  10. 12. 10/26/09 #tcpdump -q
  11. 13. 10/26/09 #tcpdump udp
  12. 14. 10/26/09
  14. 17. <ul><li>Computer s/w or h/w, intercepts & logs traffic passing over the network </li></ul><ul><li>Captures packets, decodes & analyzes contents </li></ul><ul><li>A network Analyzer is used for </li></ul><ul><ul><ul><li>Troubleshooting problems on the network </li></ul></ul></ul><ul><ul><ul><li>Analyzing the performance of a network to discover bottlenecks </li></ul></ul></ul><ul><ul><ul><li>Network intrusion detection </li></ul></ul></ul><ul><ul><ul><li>Analyzing the operations of applications </li></ul></ul></ul>
  15. 18. It is a packet sniffer Computer application Functionality is very similar to tcpdump Has a GUI front-end and many more information sorting and filtering options
  16. 19. Download and install
  17. 20. # apt-get install wireshark
  18. 21. 10/26/09
  19. 22. 10/26/09
  20. 23. This checkbox allows you to specify that Wireshark should put the interface in promiscuous mode when capturing. If you do not specify this, Wireshark will only capture the packets going to or from your computer (not all packets on your LAN segment).
  21. 24. Exposing VOIP problems Supports Malware Detection Helps recognize DOS attack Downloading FLV files
  22. 25. 10/26/09
  23. 26. 10/26/09 Here is a quick reference for TCP flags:
  24. 27. 10/26/09 4510 0068 7e87 4000 4006 3862 c0a8 011e c0a8 0128 0016 0479 b6c8 a8de 621e 87db 5018 4470 1813 0000 e492 152f 23c3 8a2b 4ee7 dbf8 0d48 88e8 0110 2b01 4295 39f4 52c9 a05b 31d7 e3ae 1c62 2dbd d955 d604 b5d2 63d1 8fbc 4ab7 1615 b382 571c 70e0 a368 a03f 425b 6211
  25. 28. 10/26/09 TCPdump Network Protocol Analyzer No Proper Interface Decent Graphical User Interface Uncontrolled Output Decently Sorted Output It is an old tool More modern tool No Graph Graph can be viewed Have to remember all the commands All commands are available in the GUI Not user friendly, but hardcore programmer friendly User Friendly
  26. 29. 10/26/09
  27. 30. 10/26/09 10/26/09 We thank our referee(s) for the game, we invite your suggestions and comments. For audience/fans, a post match press conference will be held which is for questions on the match…. Thank you