sniffdet - Remote Sniffer Detection Tool/Library
The source tarball and the binary packages are complete with full documentation about the API and the application. Unix manpages and development changelogs are also provided. Here you can find standalone documents, usually not provided within the application.
Don't forget to take a look at our FAQ (and make contributions :-).
Paper presented as a final undergraduation work at Computer Science Department
of the Federal University of Paraná - Brazil.
Abstract: Sniffers are tools used to capture and optionally analyze network traffic. This work discusses their behaviour, potential security risks when used by malicious users in a network and available defense and detection techniques. It also describes the implementation of an open source library and an application for remote sniffer detection in Ethernet networks, and the results of the experiments performed.
Keywords: Security, Computer Networks, TCP/IP, Ethernet, Sniffers, Remote Detection, Implementation.
These diagrams try to explain the architecture of libsniffdet and sniffdet. They came from our paper (which is written in brazilian portuguese only). A better explanation in english should be done in the documents available with sniffdet.
The documents below are available in the docs module of our git repository.