Definitions Edit

A sniffer (also called a packet sniffer) is a

program that intercepts routed data and examines each packet in search of specified information, such as passwords transmitted in clear text.[1]
software tool for monitoring network traffic. On a TCP/IP network, sniffers audit information packets.[2]

A sniffer (also called a packet sniffer) is a "[s]oftware tool for auditing and identifying network traffic packets."[3]

Overview Edit

Sniffers monitor network traffic on wired or wireless networks and capture packets. Packet sniffers generally can be configured to capture all packets or only those with particular characteristics (e.g., certain TCP ports, certain source or destination IP addresses). Most packet sniffers are also protocol analyzers, which means that they can reassemble streams from individual packets and decode communications that use any of hundreds or thousands of different protocols.

References Edit

  1. Critical Infrastructure Protection: Challenges and Efforts to Secure Control Systems, at 5 n.3.
  2. Practices for Securing Critical Information Assets, Glossary, at 58.
  3. CNSSI 4009.
Community content is available under CC-BY-SA unless otherwise noted.