SNIFFING
Apne bhi kabhi na kabhi what is Sniffing ya Sniffing ko jarur search Kiya hoga. Yeh ek aisi technique hai jiski help se kisi network mai flow ho rahe data ko capture kiya ja sakta hai.
Jaise maan lijiye aap facebook par login karte hai. Aise mai agar hacker iske through data ko capture karta hai. Tab apke username or password ko bhi sniff kiya ja sakta hai. Jo data iske through capture kiya jata hai veh encrypt hota hai.
Lekin aisa bhi nahi hai ki data ko decrypt nahi kiya ja sakta. Iske through Network ko monitor kiya jata hai. Jaise agar hacker kisi Network par SNIFFING karta hai. Tab veh jaan sakta hai ki user kis tarah ka data search karta hai hai.
Jaise maan lijiye ek Network mai 5 computer hai. Tab hume nahi pata ki user apne Computer par kis tarah ki Internet surfing karta hai. Aise mai iske through data ko capture karke pata lgaya ja sakta hai.
User kis tarah ki website ko open karta hai. Asan language mai agar kahe kisi Network mai flow ho rahe data ki Information ko capture karna SNIFFING kehlata hai. Yeh do types ke hote hai.
Note- This Post only for educational Purpose .Don’t miss use your Knowledge.
Also Read
Types of SNIFFING
Active SNIFFING
Passive SNIFFING
Active SNIFFING
Iska use switch based Network mai kiya jata hai. Isme content accessable memory (CAM) ke through yeh pata lgaya ja sakta hai. Network mai konsa host kis port ke sath connected hai. IP poisoning jaise attack Active SNIFFING ke through kiye jate hai.
Passive SNIFFING
Iske through kisi network ke sabhi computes ke packets ko capture kiya ja sakta hai. Passive ka use sabse jada kiya jata hai. Jaise 5 computers agar Switch ke sath connect hote hai. Tab un sabhi Computers ke data ko ek sath Sniffing karna Passive SNIFFING kehlata hai. Switch or HUB kya hai iske bare mai apko Networking Devices mai btaya gaya hai.
Use of SNIFFING by Ethical hackers
Packet capturing
Network traffic usage and anylsis
Packet Conversatiob for data anylsis
Network troubleshooting
Use of SNIFFING by Blackhat hackers
User and passwords stealing
Email and message Stealing
Packet Spoofing and data theft
Secure Socket Layer
Iske types ke bare mai jane se pahle apko SSL ke bare mai pata hona jaruri hai. SSL ka pura naam Secure Socket Layer hota hai. SSL apki website ko secure karta hai. Jaise HTTP or HTTPS apki website ko secure karta hai. Jaise HTTP or HTTPS jaha HTTPS hota hai vaha SSL ka use kiya gaya hota hai.
Agar apki website par SSL ka use nahi hoga. Aise mai hacker iske through data ko sniffing ke through capture karta hai. Tab veh plane text mai hi hacker ko mil jata hai. Lekin agar apki Website HTTPS hoti hai tab agar SNIFFING ki jati hai. tab data Encrypt hokar milta hai Encryption ke bare mai apko Cryptography mai bataya gaya hai aap use bhi padh sakte hai.
jaise maan lijiye ek Website hai Http:www.freelearningtech.com. Agar is tarah ki Website par SNIFFING ki jati hai. Tab data packets jo capture hoge veh Plane text mai hi hoge. Lekin agar Website hai Https:www .freelearningtech.com is tarah ki website par agar SNIFFING ki jati hai. Tab jo data packets capture hote hai.
veh encrypt hote hai. Sniffing attack se bachne ke liye facebook, google or amazon jaisi websites ko SSL ke through secure rakha jata hai. Taki is attack ke through in websites par data packets ko capture nahi kiya ja sake. Apko bhi apni Website par SSL ka use karna chahiye taki kisi tarah ke SNIFFING attack ko nahi kiya ja sake.
Types of SNIFFING Attack
DHCP Attack
Is Attack ke bare mai jane se pahle apko yeh pata hona chahiye ki DHCP kya hota hai. DHCP ka pura naam Dynamic Host Configuration Protocol hota hai.
DHCP kisi Network mai Host computer ko IP Address, Subnet Mask or Default Gateway Provide karta hai. Jaise ki hume pata hai ki sabhi computers ka apna ek Unique IP Address hota hai. Apka Computer DHCP Server ko request send karta hai.
IP Address lene ke liye DHCP Server ke pass jo IP Address free hota hai. Veh host computer ko mil jata hai or usi IP Address ke through user Internet surfing karta hai. Isi ka fayda hackers uthate hai. Jis time Host Computer DHCP server se IP Address ki request send karta hai.
Hacker fake DHCP Server bana kar user ko apne IP Address se add kar deta hai. Aise mai jab user kisi bhi tarah ki Internet surfing karta hai. Tab veh data sidha hacker ke pass jata hai.
MAC Attacks
MAC Attacks ke bare mai jane se pahle apko Switch or HUB ke bare mai jana jaruri hai. Switch or HUB ke bare mai apko Networking Devices ke article mai btaya gaya hai. aap use padh sakte hai.
MAC Flooding ke through hacker Switch ko HUB ki tarah kaam karne ke liye majbur karta hai. Jaise ki hume pata hai ki aaj ke time mai Switch ka use kiya jata hai. Lekin Switch ki MAC Flooding ki vulnerability ka fayda hackers uthate hai
Mac Flooding ke through hacker switch ko HUB ki tarah kaam karvate hai. Jaise agar ek Computer se kisi Computer par data send kiya jata hai. tab veh sabhi Computers par data ko send karta hai.
Aise mai hacker MAC Flooding ke through Switch ko HUB ki tarah kaam karva kar Data ko Network mai flow ho rahe data ko khud receive kar sakta hai. IP Poisoning bhi MAC Flooding ki tarah hi kaam karta hai.
Spoofing Attack
Spoofing Attack ka use se hacker kayi tarah ki hacking kar sakta hai. Jaise ki hum jante hai sabhi Computers ka ek Mac Address hota hai. Hacker isi mac Address ko Spoof karke hacking ko anjam deta hai.
Jaise maan lijiye ek Normal User hai uska ek MAC Address hai. Veh Internet par kisi Website par Login karta hai. Aise mai hacker agar Mac Address ko spoof karke apne Computer kisi Website par login karta hai.
Aise mai hacker agar mac address ko spoof karke. Apne Computer mai usi mac address ka use karta hai. Jo kisi normal user ka mac address hai. Aise mai Server ko yahi lagta hai. Veh jis mac address ko find kar raha hai Veh usi ka hai.
Lekin real mai veh ek hacker ka mac address hota hai. Is tarah se hacker iska use karke Spoofing attack ko karta hai. Yaha IP Spoofing or MAC Spoofing dono isi tarah se kiya jata hai.
DNS Poisoning
Iske bare mai jane se pahle apko DNS ke bare mai jana jaruri hai. Iske bare mai detail mai apko age btaya jayga. Lekin yaha apko btaya ja raha hai. DNS ka pura naam Domain Name System hota hai. Jaise ki hum jante hai ki Computers user ke through type kiye gaye alphabets ko nahi samjhta hai.
Veh apni language mai convert karke samjh pata hai . sabhi Websites ka apna ek unique IP Address hota hai. Hum Humans ke liye itne sare IP Address ko yaad rakhna lagbhag mushkil hota hai. Lekin hum Names ko yaad rakh sakte hai.
Jaise Google.com, Facebook, amazon lekin humara Computer inke IP Address ko samjhta hai. Isliye DNS ko bnaya gaya hai isi ka fayda hacker uthate hai. Jaise DNS Spoofing karke hacker user ke through ki gayi request ko apne computer par redirect kar sakta hai.
Jaise maan lijiye user ne Facebook.com ko open kiya hai. Aise mai agar DNS Poisoning Attack kiya jata hai. Tab host computer facebook.com ko open nahi karta hai. Veh hacker ke through redirect ki gayi website par user ko redirect kar deta hai.
Aise mai user ko yeh pata hi nahi chalta hai ki veh real Website par hai ya fake Website par hai. Is tarah se DNS Poisoning Attack kiya jata hai.
The Conclusion
Main umeed karta hu ki apko SNIFFING or uske types ke bare mai pata chal gaya hoga. Yeh attack Wireshark jaise tools ki help se kiya jata hai. Vaise to bahut sare tools hai lekin Wireshark best tool mana jata hai.
Lekin agar aap Hacking ki feild mai new hai. Tab pahli bar mai wireshark ko samjh nahi sakte hai ki data packets kis tarah se capture kiye ja rahe hai. Yeh sab apki practice par depend karta hai. Jaise jaise aap is attack ka use karte hai. Aap sikhte chale jayege.
Lekin aap iske through kisi ke data ka nuksan kabhi mat kare. Yeh sab aap Virtual PC mai hi kare ya apne hi Network par iski Practice kare. Jab tak aap ise ache se nahi samjh jate hai. Agar aapka kisi bhi tarah ka koi question hai tab aap humse puch sakte hai. Agar apko humare yeh posts ache lagte hai tab aap ise share jarur karen.
Thankyou
Leave a Reply