sniffer – Page 4 – WindowsTechs.com

How can TLS/HTTPS remain secure if the entire transmission is monitored? [duplicate]

Posted on July 19, 2019 by pydude

This question already has an answer here:

How is it possible that people observing an HTTPS connection being established wouldn’t know how to decrypt it?

14 answers

Okay, so I’m pretty sure this question comes from a fundamental misunderstanding of how HTTPS works, but here goes:

Say that someone has hooked into the “internet line” coming from your home so that they can view any data that is sent or received over it.

Now you type in your browser to visit https://secure.com.

The client sends a client hello. Attacker and client know content.
The server sends back a server hello. The attacker and client now know the cipher and certificate being used.
The server sends the details needed for the client (and therefore the attacker) to generate the pre-master secret.
The client and server (and attacker) generate a master secret that is then used for all further transmissions.
Since the attacker knows everything the client knows, they can decrypt anything sent from the server to the client. (And I don’t know if they can decrypt vice-versa)

Since the attacker knows everything the client knows about the keys etc, can’t they see anything the client recieves?

How does HTTPS remain secure if all transmissions are monitored?

Continue reading How can TLS/HTTPS remain secure if the entire transmission is monitored? [duplicate]→

Why I can not find my clear text login credentials in Wireshark traffic

Posted on July 6, 2019 by qbq

I am examining network traffic to demonstrate how a password sent in clear HTTP (not HTTPS) can be retrieved from traffic.

However, I encountered a case for a website that I could not understand. The website does not use HT… Continue reading Why I can not find my clear text login credentials in Wireshark traffic→

Router administration page is served over HTTP

Posted on May 14, 2019 by JohnSnow

My wireless router admin page does not include https option.

It is always served over http. This is obviously a concern in case someone is sniffing the network and can read my password in plain text.

The admin page is web-b… Continue reading Router administration page is served over HTTP→

Is my router spying on my network traffic?

Posted on May 8, 2019 by brichins

I got a new TP-Link router a couple months ago, and configured it to use the OpenDNS domain servers for basic content filtering across all household WiFi devices. Everything seemed to be great.

Tonight I pulled up the OpenDN… Continue reading Is my router spying on my network traffic?→

I have a water heater with a wireless transmitter for changing the temp, how can I sniff the commands sent between them?

Posted on April 28, 2019 by user206625

Long story short I’m automating a lot of my stuff at home and as part of that I’d like to be able to replicate the commands sent to my unit (https://www.rinnai.com.au/wp-content/uploads/2017/09/mc_503rc_operating_instructions… Continue reading I have a water heater with a wireless transmitter for changing the temp, how can I sniff the commands sent between them?→

Need Explaination to Xerosploit’s Sniffer Function code

Posted on April 11, 2019 by Ahmed Ezzat

cmd_snif = os.system(“xettercap ” + target_parse + target_ips + ” -P MYSQL,SNPP,DHCP,WHATSAPP,RLOGIN,IRC,HTTPS,POST,PGSQL,NNTP,DICT,HTTPAUTH,TEAMVIEWER,MAIL,SNMP,MPD,COOKIE,NTLMSS,FTP,REDIS -I ” + up_interface + ” –gateway “… Continue reading Need Explaination to Xerosploit’s Sniffer Function code→

Is using a network sniffer for host discovery a viable option?

Posted on March 29, 2019 by TheLinuxPro

Would a packet sniffer like tcpdump be effective for network host discovery and if so how effective is it compared to more active methods such as the infamous network mapper nmap?

Continue reading Is using a network sniffer for host discovery a viable option?→

Drone Gives Up Its Wireless Secrets To Zigbee Sniffer

Posted on February 9, 2019 by Dan Maloney

There’s something thrilling about decoding an unknown communications protocol. You start with a few clues, poke at the problem with some simple tools, and eventually work your way up to that first breakthrough that lets you crack the code. It can be frustrating, but when you eventually win, it can be very rewarding.

It seems that [Jason] learned this while decoding the wireless conversation between his mass-market quad and its controller. The quad in question, a Yuneec Q500, is one of those mid-range, ready-to-fly drones that’s targeted at those looking to get in the air easily and take some cool …read more

Continue reading Drone Gives Up Its Wireless Secrets To Zigbee Sniffer→

Monitor mode and managed mode in WiFi adapter

Posted on January 13, 2019 by destro1

Is possible to read packet data (from the application layer) in monitor mode with my WiFi adapter when I have the password to the subnet that I want to read data from?
And is possible to capture every unicast(not with my MAC … Continue reading Monitor mode and managed mode in WiFi adapter→

How to identify the communication protocol used in a wireless device?

Posted on December 30, 2018 by Tofulicious

I really hope that this is the right place to ask.

I need to analyze a baby monitor for any security or privacy weaknesses.

The spec sheet of the baby monitor says, that it uses the ISM 2400~2483.5 MHz bands to transfer vid… Continue reading How to identify the communication protocol used in a wireless device?→