| A computer program that targets packets of data transmitted over a network is generally said to be the packet sniffer. It captures the packets by setting the Network Interface Card into the unbridled mode and decodes them eventually. It converts the data flowing or information sharing in the network into a human-readable format so that people can read the traffic and understand it through which, we can detect network intrusion. Also, we can find out unsecured or malicious content passed on the network. In this project, the focus has been given on the fundamentals of packet sniffer and its operating. This project shows the event of the tool on UNIX platform and its use for Intrusion Detection. Also, this project describes strategies to notice the presence of such package on the network and to handle them expeditiously. Slight observation has been created on the operating behavior of already existing human package reminiscent of Wireshark, tcpdump, and psniffer, that provides a basis for the eventuality of our sniffer software. A library called libpcap has been used for capturing packets |
