Year-end Sale % OFF 
Abstract
Nowadays, the protection and the security of data transited within computer networks represent a real challenge for developers of computer applications and network administrators. The Intrusion Detection System and Intrusion Prevention System are the reliable techniques for a Good security. Any detected intrusion is based on data collection. So, the collection of an important and significant traffic on the monitored systems is an interesting feature. Thus, the first task of Intrusion Detection System and Intrusion Prevention System is to collect information’s basis to treat and analyze them, and to make accurate decisions. Network analysis can be used to improve networks performances and their security, but it can also be used for malicious tasks. Our main goal in this article is to design a reliable and powerful network sniffer, called PcapSockS, based on pcap language and sockets, able to intercept traffic in three modes: connected, connectionless and raw mode. We start with the performances assessment performed on a list of most expanded and most recently used network sniffers. The study will be completed by a classification of these sniffers related to computer security objectives based on parameters library (libpcap/winpcap or libnet), filtering, availability, software or hardware, alert and real time. The PcapSockS provides a nice performance integrating reliable sniffing mechanisms that allow a supervision taking into account some low and high-level protocols for TCP and UDP network communications.
Highlights
AND NOTATIONSThe sniffing is a technique of monitoring every packet that crosses the network
The performances assessment is performed on a list of network sniffers based on various parameters to ensure the computer security objectives, mainly the type of used library, libpcap or libnet to establish the performances and limitations of each library and validate our choice
We provide an optimal sniffer for capturing, filtering, optimization and decoding traffic while enabling the large satisfaction of various specificities and open the horizons for other works trying to improve the computer security techniques
Summary
The sniffing is a technique of monitoring every packet that crosses the network. A packet sniffer is a piece of software or hardware that monitors all network traffic. The sniffing tools are used to listen, monitor, capture, record, and analyze network traffic. They extract the necessary information’s to make decision and implement the best strategies to improve the computer security. Many sniffers are available to capture packets circulated in wired networks (Ethernet sniffers, for example) and wireless network They help network managers to assess and review the data over their networks, to indicate the network problems and to identify some failures monitored network [16].
Sign-in/Register to view highlights & summary 
Published Version (
Free)
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a callMore From: International Journal of Advanced Computer Science and Applications
Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.
