Ababini kunye nabaHlengi bangakwazi ukuThutha iNethiwekhi yeThutho
I-network sniffer ifana nje; ithuluzi lesofthiwe esilungeleyo, okanye ikhuphe idatha ehamba phezu kweekhomputha zenethiwekhi ngexesha langempela. Ingaba yiprogram yesofthiwe enezinto ezizimeleyo okanye ifowuni ye-hardware ene-software efanelekileyo okanye i-firmware.
I-Network sniffers ingathatha iikopi ze-snapshot yedatha ngaphandle kokuyibuyisela okanye ukuyijika. Abanye abasebenzisa i-sniffers basebenza kuphela ngeepakethi ze-TCP / IP , kodwa izixhobo ezithengise ngakumbi zingasebenza kunye nezinye iiprosoft kunye namanqanaba aphantsi, kuquka ama- Ethernet .
Kwiminyaka eyadlulayo, abaculi bezixhobo babezixhobo ezisetyenziselwa kuphela oonjiniyela benethiwekhi. Namhlanje, nangona kunjalo, kunye nezicelo zesofthiwe ezifumanekayo mahhala kwiwebhu, zithandwa kakhulu ngabaculi be-intanethi kwaye abantu bafuna ukwazi ukuxhumana.
Qaphela: Ngamaxesha athile ama-sniffers abizwa ngokuba yi-probes network, i-wireless sniffers, i-Ethernet sniffers, i-packet sniffers, abahlaziyi bepakethe, okanye bavele baxakeke.
Ziziphi ii-Packet Analyzers ezisetyenziselwa
Kukho uluhlu lweentlobo zezicelo zeepakethi ezifake iipakethe kodwa ezininzi izixhobo zokuphonononga idatha azifani phakathi kwesizathu esingenasiphelo kunye nesiqhelo, esiqhelekileyo. Ngamanye amazwi, ezininzi iimpakethe ziyakusetyenziswe ngendlela engafanelekanga ngumntu omnye kunye nezizathu ezifanelekileyo ngomnye.
Inkqubo enokubamba iiphasiwedi, umzekelo, ingasetyenziselwa i-hacker kodwa isixhobo esifanayo singasetyenzwa ngumlawuli wenethwekhi yokufumana iinkcukacha zeenethwekhi ezifana ne- bandwidth ekhoyo.
I-sniffer ingaba luncedo ekuhloleni i-firewall okanye kwi-filters yewebhu, okanye ukuxilonga ubudlelwane bamakhasimende / iseva.
Izixhobo zoNxibelelwano lweNethiwekhi
IWireshark (eyayibizwa ngokuba yi-Ethereal) iyabonwa ngokubanzi nje ngokuba yi-network sniffer ethandwa kakhulu. Isicelo semithombo ekhululekile, evulekileyo esibonisa idatha yezithuthi kunye nekhowudi yokubonisa imibala ukubonisa ukuba yintoni na isetyenziselwa ukuyihambisa.
Kwiinkonzo ze-Ethernet, umsebenzisi walo mbonakalo ubonisa izicwangciso ezizimeleyo kwimihlu ephawuliweyo kunye neengqamaniso zemibala eyahlukileyo nokuba zithunyelwa ngeTCP , UDP , okanye ezinye iiprotoksi. Kwakhona kunceda iqela kunye nemijelo yomyalezo ekuhanjiswe ngaphakathi naphambili phakathi komthombo kunye nokuya kuyo (okuqhelekileyo idibaniswe kunye nexesha kunye neendlela ezivela kwezinye izingxoxo).
I-Wireshark isekela i-traffic traps ngokusebenzisa iqhosha lokuqalisa iqhosha. Esi sixhobo sineenkcukacha ezahlukeneyo zokucoca ezinciphisa ukuba yeyiphi idatha eboniswayo kwaye ifakiwe kwiimpazamo - into ebalulekileyo njengoko isithuthi kwiintanethi ezininzi ziqulethe iintlobo ezahlukeneyo zomyalezo wokulawula oqhelekileyo ongekho umdla.
Izicelo ezininzi zeenkqubo zesofthiwe ezicwangcisiweyo ziye zaphuhliswa kule minyaka. Nazi izibonelo ezimbalwa nje:
- i-tcpdump (itayiti yomyalelo weLuxal kunye nezinye iinkqubo zokusebenza ezisusela kwi-Unix)
- CloudShark
- UKayin noAbheli
- I-Microsoft Message Analyzer
- I-CommView
- Omnipeek
- Capsa
- Ettercap
- PRTG
- Free Analyzer Network
- NetworkMiner
- Zixhobo ze IP
Ezinye zezi zixhobo zikhululekile ngelixa ezinye zibiza okanye zingaba nesilingo samahhala. Kwakhona, ezinye zeenkqubo azigcinwa okanye zihlaziywe kodwa zisenokukhuphela.
Imiba kunye neNethiwekhi yokuHluma
Izixhobo zokuguqula zinika indlela enkulu yokufunda indlela ama-protocols asebenza ngayo. Nangona kunjalo, banikezela lula ukufumana ulwazi oluzimeleyo njengamaphasiwedi enethiwekhi. Hlola nabanikazi ukuba ufumane imvume ngaphambi kokusebenzisa i-sniffer kwinethiwekhi yomnye umntu.
I-probes yenethiwekhi inokuthintela kuphela idatha kwiinkcukacha zomnatha wekhompyutha yomnatha. Kwezinye idibaniso, i-sniffers ithatha kuphela ithrafikhi ekubhekiselele kulolu hlobo lwakhiwo lwenethiwekhi. Unxibelelwano oluninzi lwe-intanethi ye-Ethernet ebizwa ngokuba yindlela ekhohlakeleyo evumela i-sniffer ukuba ithathe yonke i-traffic pass through the link (nokuba ingaqwalaselwa ngqo kumphathi.)