Sniffing

  _{Packet Sniffing} Packet Sniffing What is packet snifng?

  

Ethreal



  Now known as Wireshark

  Wireshark

  (2.1) Introduction to Ethereal

  (2.2) Introduction to Ethereal

  (2.3) Introduction to Ethereal

  (5.1) Example: Analysis of packets exchanged between an _{LLRP Reader (IP: 206.169.229.171) and a Client}

  Wait … what is LLRP 

  Low Level Reader Protocol (LLRP)

  

RFID

 _{RFID (bahasa Inggris: Radio Frequency Identification) atau}

  Question ..

  

  Masih inget dengan TCP/UDP ?

  (5.2) Example: TCP Connection Establishment. Step 1. _{IP (18.58.0.254) requests a connection [SYN to IP}

  (5.3) Example: TCP Connection Establishment. Step 2. _{IP (206.169.229.171) accepts the connection [SYN, ACK}

  (5.4) Example: TCP Connection Establishment. Step 3. _{IP (18.58.0.254) acknowledges the last message [ACK so that}

  (5.5) Example: LLRP data transfer.

  Question ...

  

  Masih inget

  (5.6) Example: LLRP data transfer.

_{Client sends to the Reader GET_READER_CAPABILITIES LLRP message}

  _{ Session Hijacking adalah mengambil alih sebuah session pada satu} Session Hijacking koneksi jaringan.

  Spoofing

  Type of Spoofing _ ARP Spoofing

  IP Spoofing  _{IP spoofing is the creation of TCP/IP packets with}

  Email Spoofing

  _ Email Spoofing One simple form of email spoofing is to create a

  

Web Spoofing



  _ MitM Attacks

‘Man-in-the-Middle’ refers to a machine that is set up so that traffic between

  _{ IP Spoofing Protect against with good firewall rules – keep your machines from} Countermeasure _{Limit configuration access on machines} launching a spoofed IP – router filters