Mukul Sahu, profile picture
Uploaded byMukul Sahu
PPTX, PDF288 views

Nmap & Network sniffing

Network reconnaissance tools like Nmap and THC-Amap are used to discover hosts, services, and potential vulnerabilities on a computer network. Nmap sends custom packets to analyze responses and build a network map, while THC-Amap identifies applications listening on ports. Network sniffing tools such as Wireshark, TcpDump and WinDump capture and analyze packet-level traffic to locate network problems. Common sniffers also include Ettercap, Hping and Kismet. Injection interferes with network connections by constructing spoofed packets.

Embed presentation

Download to read offline
SARDAR PATEL COLLEGE OF ENGINEERING,BAKROL Cyber Security Subject code : (2150002)
BRANCH :- I.T Group Members Name Enrollment No. Mukul Sahu 161240116024 Devanand Kshirsagar Maruti 161240116020 Isha Kasar 161240116014
Network Reconnaissance  Network reconnaissance is a term for testing for potential vulnerabilities in a computer network. This may be a legitimate activity by the network owner/operator, seeking to protect it or to enforce its acceptable use policy. It also may be a precursor to external attacks on the network.  There are two tools for it:- 1. Nmap 2. THC-Amap
Nmap  Nmap (Network Mapper) is a security scanner, used to discover hosts and services on a computer network, thus building a "map" of the network.  To accomplish its goal, Nmap sends specially crafted packets to the target host(s) and then analyzes the responses.  The software provides a number of features for probing computer networks, including host discovery and service and operating-system detection.
THC-Amap  Amap is a great tool for determining what application is listening on a given port.  In other words it is a scanner that identifies applications/services installed on a remote machine.  Their database isn't as large as what Nmap uses for its version detection feature, but it is definitely worth trying for a 2nd opinion or if Nmap fails to detect a service.  Amap even knows how to parse Nmap output files and it can be used to confirm or complete a Nmap analysis.
Network Sniffing  Process of capturing, decoding, and analyzing network traffic is called network sniffing.  Network sniffing is a tool that can help you locate network problems by allowing you to capture and view packet level data on your network. The Colasoft Capsa Network sniffer is a powerful network analyser  A packet sniffer is a software application that uses a network adapter card in promiscuous mode to capture all network packets
EXAMPLE OF NETWORK SNIFFERS  TcpDump  winDump  Wireshark  Ettercap  Hping  Kismet
TcpDump  TcpDump is a common packet analyzer that runs under the command line.  It allows the user to display TCP/IP and other packets being transmitted or received over a network to which the computer is attached.  TcpDump is free software and it works on most Unix- like operating systems.
WinDump  WinDump is the Windows version of tcpdump, the command line network analyzer for UNIX.  WinDump is fully compatible with tcpdump and can be used to watch, diagnose and save to disk network traffic according to various complex rules.  It can run under Windows 95, 98, ME, NT, 2000, XP, 2003 and Vista.
Wireshark  Wireshark is a free and open source packet analyzer.  It is used for network troubleshooting, analysis, software and communications protocol development, and education.  Originally named Ethereal, the project was renamed Wireshark in May 2006 due to trademark issues.  Wireshark is very similar to tcpdump, but has a graphical front- end, plus some integrated sorting and filtering options.
Ettercap  Ettercap is a free and open source network security tool for man- in-the-middle attacks on LAN.  It can be used for computer network protocol analysis and security auditing.  It runs on various Unix-like operating systems including Linux, Mac OS X, BSD and Solaris, and on Microsoft Windows.  It is capable of intercepting traffic on a network segment, capturing passwords, and conducting active eavesdropping against a number of common protocols.
Hping  Hping is a free packet generator and analyzer for the TCP/IP protocol.  It is a one type of a tester for network security. It is one of the tools for security auditing and testing of firewalls and networks.  The new version of hping, hping3, is scriptable using the Tcl language and implements an engine for string based, human readable description of TCP/IP packets, so that the programmer can write scripts related to low level TCP/IP packet manipulation and analysis in very short time.
Kismet  Kismet is a network detector, packet sniffer, and intrusion detection system for 802.11 wireless LANs.  Kismet will work with any wireless card which supports raw monitoring mode, and can sniff 802.11a, 802.11b, 802.11g, and 802.11n traffic.  The program runs under Linux, FreeBSD, NetBSD, OpenBSD, and Mac OS X.  Kismet is used in a number of commercial and open source projects and it is distributed with Kali Linux.
Injection  Injection refers to the process of interfering with an established network connection, by means of constructing packets to appear as if they are part of the normal communication stream.

More Related Content

PDF
Network Monitoring System ppt.pdf
bykristinatemen
 
PDF
Topics in network security
byNasir Bhutta
 
PPTX
Wireshark
byantivirusspam
 
PDF
Ch 10: Hacking Web Servers
bySam Bowne
 
PPTX
Packet sniffing
byShyama Bhuvanendran
 
PPTX
Wireshark
bySourav Roy
 
PPTX
Nmap(network mapping)
byshwetha mk
 
PPTX
Metasploit framwork
byDeepanshu Gajbhiye
 
Network Monitoring System ppt.pdf
bykristinatemen
 
Topics in network security
byNasir Bhutta
 
Wireshark
byantivirusspam
 
Ch 10: Hacking Web Servers
bySam Bowne
 
Packet sniffing
byShyama Bhuvanendran
 
Wireshark
bySourav Roy
 
Nmap(network mapping)
byshwetha mk
 
Metasploit framwork
byDeepanshu Gajbhiye
 

What's hot

PPTX
Nmap basics
byn|u - The Open Security Community
 
PDF
Basics of ssl
byn|u - The Open Security Community
 
PPT
Wireshark - presentation
byKateryna Haskova
 
PPTX
Packet sniffers
byRavi Teja Reddy
 
PPTX
Security in NodeJS applications
byDaniel Garcia (a.k.a cr0hn)
 
PPTX
Introduction to Metasploit
byGTU
 
PPTX
SSL And TLS
byGhanshyam Patel
 
PPT
Json
bymussawir20
 
PPTX
Packet Sniffer
byvilss
 
PDF
Tools kali
byketban0702
 
PPT
Snort
byStickman Hai
 
PPTX
Symmetric and asymmetric key cryptography
byMONIRUL ISLAM
 
PPTX
Types Of Firewall Security
byiberrywifisecurity
 
PPTX
Malware Classification and Analysis
byPrashant Chopra
 
PPTX
Exploitation techniques and fuzzing
byPrachi Gulihar
 
PPTX
Keyloggers
bykdore
 
PPTX
Man in The Middle Attack
byDeepak Upadhyay
 
PPT
Wireless Intrusion Prevention Systems or WIPS
byMd Sohail Ahmad
 
PPTX
Java media framework
byPayal Vishwakarma
 
PPTX
Firewall presentation
bygaurav96raj
 
Nmap basics
byn|u - The Open Security Community
 
Basics of ssl
byn|u - The Open Security Community
 
Wireshark - presentation
byKateryna Haskova
 
Packet sniffers
byRavi Teja Reddy
 
Security in NodeJS applications
byDaniel Garcia (a.k.a cr0hn)
 
Introduction to Metasploit
byGTU
 
SSL And TLS
byGhanshyam Patel
 
Json
bymussawir20
 
Packet Sniffer
byvilss
 
Tools kali
byketban0702
 
Snort
byStickman Hai
 
Symmetric and asymmetric key cryptography
byMONIRUL ISLAM
 
Types Of Firewall Security
byiberrywifisecurity
 
Malware Classification and Analysis
byPrashant Chopra
 
Exploitation techniques and fuzzing
byPrachi Gulihar
 
Keyloggers
bykdore
 
Man in The Middle Attack
byDeepak Upadhyay
 
Wireless Intrusion Prevention Systems or WIPS
byMd Sohail Ahmad
 
Java media framework
byPayal Vishwakarma
 
Firewall presentation
bygaurav96raj
 

Similar to Nmap & Network sniffing

PPTX
SOFTWARE TOOLS(Bhavik).pptx
byKaran216380
 
PPTX
Network sniffers & injection tools
byvishalgohel12195
 
PPTX
Prensentation on packet sniffer and injection tool
byIssar Kapadia
 
PPTX
Packet capturing
byPankajSingh1035
 
PPTX
Packet sniffers
byKunal Thakur
 
PPT
Module 5 Sniffers
byleminhvuong
 
PPTX
Ethical Hacking - sniffing
byBhavya Chawla
 
PDF
Chapter 7 security tools i
bySyaiful Ahdan
 
PDF
Network Security Testing Tools
bypraveen_recker
 
DOCX
For your final step, you will synthesize the previous steps and la
byShainaBoling829
 
PPSX
Security measures for networking
byShyam Kumar Singh
 
PPTX
packet sniffing with Wireshark and its implementation.pptx
byRohitAhuja58
 
PDF
Collecting and analyzing network-based evidence
byCSITiaesprime
 
PPTX
Tools.pptx
byImXaib
 
PPTX
Nmap
bySreekanth Narendran
 
PPT
Network Scanning Phases and Supporting Tools
byJoseph Bugeja
 
DOCX
Security tools
bySwapnil Srivastav PMP®
 
PDF
Network Situational Awareness with d00gle
byDug Song
 
PPT
Network Protocol Analyzer
bySourav Roy
 
PPT
Chapter 12
bycclay3
 
SOFTWARE TOOLS(Bhavik).pptx
byKaran216380
 
Network sniffers & injection tools
byvishalgohel12195
 
Prensentation on packet sniffer and injection tool
byIssar Kapadia
 
Packet capturing
byPankajSingh1035
 
Packet sniffers
byKunal Thakur
 
Module 5 Sniffers
byleminhvuong
 
Ethical Hacking - sniffing
byBhavya Chawla
 
Chapter 7 security tools i
bySyaiful Ahdan
 
Network Security Testing Tools
bypraveen_recker
 
For your final step, you will synthesize the previous steps and la
byShainaBoling829
 
Security measures for networking
byShyam Kumar Singh
 
packet sniffing with Wireshark and its implementation.pptx
byRohitAhuja58
 
Collecting and analyzing network-based evidence
byCSITiaesprime
 
Tools.pptx
byImXaib
 
Nmap
bySreekanth Narendran
 
Network Scanning Phases and Supporting Tools
byJoseph Bugeja
 
Security tools
bySwapnil Srivastav PMP®
 
Network Situational Awareness with d00gle
byDug Song
 
Network Protocol Analyzer
bySourav Roy
 
Chapter 12
bycclay3
 

Recently uploaded

PDF
Combinatorial Interview Problems with Backtracking Solutions - From Imperativ...
byPhilip Schwarz
 
PDF
Code, Coins and Collaboration: How Open Source Shapes Modern Finance.
byDavid Okononfua
 
PDF
KoderXpert – Odoo, Web & AI Solutions for Growing Businesses
byDhvanil Trivedi
 
PDF
Design and Analysis of Algorithms(DAA): Unit-II Asymptotic Notations and Basi...
byKuvempu University
 
PDF
From Boroughs to Browsers: Naresh Ramaiya’s Digital Journey
bynareshramaiyaus
 
PPTX
Managed Splunk Partner vs In-House: Cost, Risk & Value Comparison
byssuser6ab5a5
 
PPTX
Why Your Business Needs Snowflake Consulting_ From Data Silos to AI-Ready Cloud
byChetu
 
PDF
Why Zoho Notebook’s AI-Fueled Upgrade Matters for Knowledge Workers in 2026
byEvoluz Global Solutions
 
PDF
Ch2 -ENG.pdf COMPUTER ARCHITECTURE L2 INFO
byrogase8895
 
PDF
IT Estate Modernization: Transform Your Infrastructure for the Future .pdf
byAstuteBusiness
 
PPTX
Deep Dive into Durable Functions, presented at Cloudbrew 2025
byJoonas Westlin
 
PPTX
Modern Claims Automation Solutions for Operational Agility
byInsurance Tech Services
 
PPTX
application security presentation 2 by harman
byharmanideapad
 
PDF
Data structure using C :UNIT-I Introduction to Data structures and Stacks BCA...
byKuvempu University
 
PPTX
#15 All About Anypoint MQ - Calicut MuleSoft Meetup Group
bycalicutmulesoftmeetu
 
PDF
How Does AI Improve Location-Based Mobile App Development for Businesses.pdf
byNet-Craft.com
 
PPTX
Binance Smart Chain Development Guide.pptx
bylakshubadai
 
PDF
Database Management Systems(DBMS):UNIT-I Introduction to Database(DBMS) BCA S...
byKuvempu University
 
PDF
API_SECURITY CONSULTANCY SERVICES IN USA
bydavidjohansen1597
 
PDF
Cloud-Based Underwriting Software for Insurance
byInsurance Tech Services
 
Combinatorial Interview Problems with Backtracking Solutions - From Imperativ...
byPhilip Schwarz
 
Code, Coins and Collaboration: How Open Source Shapes Modern Finance.
byDavid Okononfua
 
KoderXpert – Odoo, Web & AI Solutions for Growing Businesses
byDhvanil Trivedi
 
Design and Analysis of Algorithms(DAA): Unit-II Asymptotic Notations and Basi...
byKuvempu University
 
From Boroughs to Browsers: Naresh Ramaiya’s Digital Journey
bynareshramaiyaus
 
Managed Splunk Partner vs In-House: Cost, Risk & Value Comparison
byssuser6ab5a5
 
Why Your Business Needs Snowflake Consulting_ From Data Silos to AI-Ready Cloud
byChetu
 
Why Zoho Notebook’s AI-Fueled Upgrade Matters for Knowledge Workers in 2026
byEvoluz Global Solutions
 
Ch2 -ENG.pdf COMPUTER ARCHITECTURE L2 INFO
byrogase8895
 
IT Estate Modernization: Transform Your Infrastructure for the Future .pdf
byAstuteBusiness
 
Deep Dive into Durable Functions, presented at Cloudbrew 2025
byJoonas Westlin
 
Modern Claims Automation Solutions for Operational Agility
byInsurance Tech Services
 
application security presentation 2 by harman
byharmanideapad
 
Data structure using C :UNIT-I Introduction to Data structures and Stacks BCA...
byKuvempu University
 
#15 All About Anypoint MQ - Calicut MuleSoft Meetup Group
bycalicutmulesoftmeetu
 
How Does AI Improve Location-Based Mobile App Development for Businesses.pdf
byNet-Craft.com
 
Binance Smart Chain Development Guide.pptx
bylakshubadai
 
Database Management Systems(DBMS):UNIT-I Introduction to Database(DBMS) BCA S...
byKuvempu University
 
API_SECURITY CONSULTANCY SERVICES IN USA
bydavidjohansen1597
 
Cloud-Based Underwriting Software for Insurance
byInsurance Tech Services
 

Nmap & Network sniffing

  • 1.
    SARDAR PATEL COLLEGEOF ENGINEERING,BAKROL Cyber Security Subject code : (2150002)
  • 2.
    BRANCH :- I.T GroupMembers Name Enrollment No. Mukul Sahu 161240116024 Devanand Kshirsagar Maruti 161240116020 Isha Kasar 161240116014
  • 3.
    Network Reconnaissance  Networkreconnaissance is a term for testing for potential vulnerabilities in a computer network. This may be a legitimate activity by the network owner/operator, seeking to protect it or to enforce its acceptable use policy. It also may be a precursor to external attacks on the network.  There are two tools for it:- 1. Nmap 2. THC-Amap
  • 4.
    Nmap  Nmap (NetworkMapper) is a security scanner, used to discover hosts and services on a computer network, thus building a "map" of the network.  To accomplish its goal, Nmap sends specially crafted packets to the target host(s) and then analyzes the responses.  The software provides a number of features for probing computer networks, including host discovery and service and operating-system detection.
  • 5.
    THC-Amap  Amap isa great tool for determining what application is listening on a given port.  In other words it is a scanner that identifies applications/services installed on a remote machine.  Their database isn't as large as what Nmap uses for its version detection feature, but it is definitely worth trying for a 2nd opinion or if Nmap fails to detect a service.  Amap even knows how to parse Nmap output files and it can be used to confirm or complete a Nmap analysis.
  • 6.
    Network Sniffing  Processof capturing, decoding, and analyzing network traffic is called network sniffing.  Network sniffing is a tool that can help you locate network problems by allowing you to capture and view packet level data on your network. The Colasoft Capsa Network sniffer is a powerful network analyser  A packet sniffer is a software application that uses a network adapter card in promiscuous mode to capture all network packets
  • 7.
    EXAMPLE OF NETWORK SNIFFERS TcpDump  winDump  Wireshark  Ettercap  Hping  Kismet
  • 8.
    TcpDump  TcpDump isa common packet analyzer that runs under the command line.  It allows the user to display TCP/IP and other packets being transmitted or received over a network to which the computer is attached.  TcpDump is free software and it works on most Unix- like operating systems.
  • 9.
    WinDump  WinDump isthe Windows version of tcpdump, the command line network analyzer for UNIX.  WinDump is fully compatible with tcpdump and can be used to watch, diagnose and save to disk network traffic according to various complex rules.  It can run under Windows 95, 98, ME, NT, 2000, XP, 2003 and Vista.
  • 10.
    Wireshark  Wireshark isa free and open source packet analyzer.  It is used for network troubleshooting, analysis, software and communications protocol development, and education.  Originally named Ethereal, the project was renamed Wireshark in May 2006 due to trademark issues.  Wireshark is very similar to tcpdump, but has a graphical front- end, plus some integrated sorting and filtering options.
  • 11.
    Ettercap  Ettercap isa free and open source network security tool for man- in-the-middle attacks on LAN.  It can be used for computer network protocol analysis and security auditing.  It runs on various Unix-like operating systems including Linux, Mac OS X, BSD and Solaris, and on Microsoft Windows.  It is capable of intercepting traffic on a network segment, capturing passwords, and conducting active eavesdropping against a number of common protocols.
  • 12.
    Hping  Hping isa free packet generator and analyzer for the TCP/IP protocol.  It is a one type of a tester for network security. It is one of the tools for security auditing and testing of firewalls and networks.  The new version of hping, hping3, is scriptable using the Tcl language and implements an engine for string based, human readable description of TCP/IP packets, so that the programmer can write scripts related to low level TCP/IP packet manipulation and analysis in very short time.
  • 13.
    Kismet  Kismet isa network detector, packet sniffer, and intrusion detection system for 802.11 wireless LANs.  Kismet will work with any wireless card which supports raw monitoring mode, and can sniff 802.11a, 802.11b, 802.11g, and 802.11n traffic.  The program runs under Linux, FreeBSD, NetBSD, OpenBSD, and Mac OS X.  Kismet is used in a number of commercial and open source projects and it is distributed with Kali Linux.
  • 14.
    Injection  Injection refersto the process of interfering with an established network connection, by means of constructing packets to appear as if they are part of the normal communication stream.