Networking - The sniff exercise

704 views

Published on

A little exercise made for the networking class. We used arp-poisoning so that we can sniff facebook activity on the wireless network.

0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total views
704
On SlideShare
0
From Embeds
0
Number of Embeds
1
Actions
Shares
0
Downloads
0
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

Networking - The sniff exercise

  1. 1. SniffingexerciseLucian Lungu, Victor Truica,Flaviu Sas1st of May 2012 0
  2. 2. Semester II Sniffing exercise 2012Table of ContentsRequirements:............................................................................................................................................... 2I. Group ......................................................................................................................................................... 2II. Plan............................................................................................................................................................ 2III. Analisys .................................................................................................................................................... 2IV.Design ....................................................................................................................................................... 3V. Implementation ........................................................................................................................................ 3VI. Test .......................................................................................................................................................... 5VII. LIVE DEMO .............................................................................................................................................. 5 1
  3. 3. Semester II Sniffing exercise 2012Sniffing exercise 1st of May 2012Requirements:1.Groups of 2-32.Plan3.Analisys4.Design5.Implementation6.TestI. GroupLucian, Victor, FlaviuII. Plan1.Block diagram2. Sequence diagram3.Find a software to sniff traffic on other computer4.Use Ettercap to intercept traffic on Lucian’s computer5.Test: use Wireshark to check packets.III. AnalisysFigure out what soft to use. We decided to use Ettercap for ARP poisoning and Wireshark to seepackets. 2
  4. 4. Semester II Sniffing exercise 2012IV.DesignFor the design part, we came up with a block diagram and a sequence diagram. UML FTW!They are attached below.Figure 1: Block diagram. Lucians and Mortens PC are connected to the Internet through the wireless router. Meanwhile, theSniffer is interfering between the computer and router, being disguised as one of the other computers; that is how it can see the traffic.V. ImplementationOn the implementation part we started working in Ettercap (fig.2), solved the poisoning and we wenton to checking packets that Lucian’s computer gets; for that we used Victor’s computer.All information about what we have done with Ettercap can be found at: 3
  5. 5. Semester II Sniffing exercise 2012http://openmaniak.com/ettercap_arp.phpWe will not fill the document with all steps needed to do this, as the documentation on the site aboveis very precise and easy to go through. Beneath, a sneak peak of how Ettercap interface looks like. Figure 2: Ettercap interface; this is where you choose the interface on which you are sniffing Figure 3: Scanning for hosts on the entire network 4
  6. 6. Semester II Sniffing exercise 2012Setting the right filters on Wireshark, we were able to see that Lucian was sending messages onFacebook to people who were not online. Yay. Proof in figure 4. Figure 4: This is how Wireshark looks when it is sniffing the traffic on Lucians computer. Here, the filters can be also seen.VI. TestFor the testing, we are continuing to watch packets received by someone’s computer. It is working(see figure 4 also).VII. LIVE DEMOOn our next Networking class, we will show on the projector that our system works. 5

×