Detecting and Performing Security Breaches with Sniffer Pro

Sniffer Pro can be used to hack a network and this chapter looks at the analysis of viruses and worms, Telnet, SNMP, e-mail, and any other clear-text password protocol and its dangers. A Domain Name System (DNS) zone transfer capture is examined along with eavesdropping and replaying. It is demonstrated how the SCP can use Sniffer Pro to examine a network vulnerability in the same way an evidence technician would use a microscope to examine a crime scene. The power of this tool lies in its ability to capture and analyze data to as fine a granularity as desired. The latest threat to the internet and some of the emerging issues of concern to corporate chief security officers as well as system administrators has been covered. DNS vulnerabilities, including the topics of zone transfer reconnaissance and DNS cache poisoning have been examined. The chapter also looks at SMB signing as a means to prevent man-in-the-middle attacks.