A Packet Analyzer or Sniffer is a program or computer hardware that allow network traffic to be intercepted or logged.
As information and data passes through a network the packet sniffer is able to record each packet of data, decodes it and analyses it.
The Capabilities of a Packet Sniffer
Using a packet sniffer within a shared network, it may be possible to capture all network traffic from one device. On wireless networks, it may also be possible to capture traffic one channel at a time or, through the use of multiple adapters, several channels at the same time.
Using a packet sniffer and a network adapter, it is possible to capture traffic on wired networks using a network adapter set to promiscuous mode. This mode causes the adapter to pass all traffic sent through the network rather than only the traffic that is specifically sent to the controller.
When traffic has been captured by the packet sniffer, the entire content of the packet can be recorded or only the header which reduces the storage requirement of the device and still provides sufficient information.
Once captured by the packet sniffer, a protocol analyser can then be used to decode the data into a readable and understandable format. However, some analysers also generate network traffic.
Other Uses of a Packet Sniffer
A packet sniffer can be used to analyse network problems, detect intrusion attempts, detect network misuse, monitor bandwidth usage as well as by potential attackers to gain network information in order to mount a network attack or intrusion.
About Athena Forensics
For information on our digital forensic services or if you require any advice or assistance please contact a member of our team on 0330 123 4448 or via email on firstname.lastname@example.org, further details are available on our contact us page.
Our client’s confidentiality is of the utmost importance. All correspondence is treated with discretion, from initial contact to the conclusion of any computer forensics investigation.
Our digital forensics experts are fully aware of the significance and importance of the information that they encounter and we have been accredited to ISO 9001 for 10 years.
Our forensic experts are all security cleared and we offer non-disclosure agreements if required. Our premises along with our security procedures have been inspected and approved by law enforcement agencies.
Athena Forensics do not disclose personal information to other companies or suppliers.