Advertisement
If you have a new account but are having problems posting or verifying your account, please email us on hello@boards.ie for help. Thanks :)
Hello all! Please ensure that you are posting a new thread or question in the appropriate forum. The Feedback forum is overwhelmed with questions that are having to be moved elsewhere. If you need help to verify your account contact hello@boards.ie

Wi Fi Hotspot Packet Sniffing Detection?

  • 15-06-2007 03:18PM
    #1
    Black Swan
    Moderators, Category Moderators, Science, Health & Environment Moderators, Society & Culture Moderators Posts: 47,767 CMod ✭✭✭✭


    Is there a programme that would allow you to detect if someone was doing packet sniffing when you were on wi fi as a customer at a cafe hotspot?


Comments

  • #2
    Capt'n Midnight
    Moderators, Recreation & Hobbies Moderators, Science, Health & Environment Moderators, Technology & Internet Moderators Posts: 94,978 Mod ✭✭✭✭Capt'n Midnight


    Kismet can be set to not transmit any packets so you could use it to see if there are any netstumbler users.


  • #3
    martin84
    Closed Accounts Posts: 145 ✭✭martin84


    There was a program out there called anti sniff. The site seems to be down.
    Anti Sniff

    Basically when some one is packet sniffing their card is in promiscuous (monitor) mode so this program finds cards which are in monitor mode.

    Edit. some other methods which could be used for detecting packet sniffers. (part 6)
    Link


  • #4
    Martyr
    Closed Accounts Posts: 1,567 ✭✭✭Martyr


    martin84 wrote:
    Basically when some one is packet sniffing their card is in promiscuous (monitor) mode so this program finds cards which are in monitor mode.

    when this tool initially came out, Don't think anybody was interested in it, and after a few vulnerabilities surfaced, they stopped developing it.

    You can use ARP (Broadcast 31-bit) to test if a system is sniffing packets, i know that probably doesn't cover your question Blue Lagoon, i know.
    Capt'n Midnight wrote:
    Kismet can be set to not transmit any packets so you could use it to see if there are any netstumbler users.

    anymore details on this?


  • #5
    Black Swan
    Moderators, Category Moderators, Science, Health & Environment Moderators, Society & Culture Moderators Posts: 47,767 CMod ✭✭✭✭Black Swan


    Thanks guys for the replies. There seems to be a growing demand for wifi hotspots all over the States (and the world). Virtually all the thousands of Star*ucks coffeehouses have T-Moble wifi, for example. Many customers worry about someone sniffing their communications, especially when they are doing business online and could give away account information. A smart programmer could make a millions of euros if he/she came up with a userfriendly security defense programme against wifi snoops. I wish I had the requisite programming knowledge! Any takers? Want to be rich?


  • #6
    koloughlin
    Closed Accounts Posts: 97 ✭✭koloughlin


    I think you can avoid the issue altogether if you connect to your work or home VPN before you start surfing. With a little work it's possible to set something like OpenVPN up on your home network, and then when you travel you can tunnel everything through there.


  • Advertisement
  • #7
    NutJob
    Closed Accounts Posts: 884 ✭✭✭NutJob


    Because you dont need to arp spoof on wifi i dont see how to detect it.

    The old tricks like checking timeing + sending brodacasts etc dont apply.
    (in non switched days i had a cable with the tx wires cut)


    Also as stated with kismet you can happly dump packet capture even while still wep encoded to decrypt later.
    http://www.cs.wright.edu/~pmateti/InternetSecurity/Lectures/WirelessHacks/Mateti-WirelessHacks.htm#_Toc77524656


Advertisement