Intrusion Detection Using Packet Sniffer


Tauseef Ahamed , G.C.E.T Greater noida; Sapan Vij, G.C.E.T; Prashant Kumar, G.C.E.T; Mr. Rishabh jain, G.C.E.T


IDS (Intrusion Detection System), Packet Capture, Traffic-Analysis, Libpcap, Network- Monitoring, Network Analyzer, Network Attacks, Packet Sniffer


Network Intrusion Detection and Prevention system works on analyzing the packets coming and going through the interface. Computer software that can intercept and log traffic passing over a digital network or part of a network is better known as packet sniffer. Depending on the network structure one can sniff all or just parts of the traffic from a single machine within the network. With the development and popularization of network Technology, the management, maintenance and monitoring of network is Important to keep the network smooth and improve Economic efficiency. For this purpose packet sniffer is used. This paper focuses on the basics of packet sniffer and its working, development of the tool on Linux (KALI) platform and its use for Intrusion Detection. Focus has also been laid to analyze the bottleneck scenario arising in the network, using this self-developed packet sniffer. Before the development of this indigenous software, minute observation has been made on the working behavior of already existing sniffer software such as wireshark (formerly known as ethereal), tcpdump, and snort, which serve as the base for the development of our sniffer software. For the capture of the packets, a library known as libpcap has been used. In development of this software we incorporated an additional feature that was not in the original one viz. Sniffer Uploading.

Other Details

Paper ID: IJSRDV4I30020
Published in: Volume : 4, Issue : 3
Publication Date: 01/06/2016
Page(s): 352-356

Article Preview

Download Article