Comprehensive Guide to Traffic Analysis Using Snort and Tcpdump
This detailed guide provides step-by-step instructions on traffic analysis using Snort and Tcpdump tools. It covers topics such as installing Android Studio, copying Tcpdump files to rooted devices, rooting your device, setting up the server IP address, and running server and client codes for analysis. The guide also includes downloading necessary codes and capturing information effectively. Follow the rules and instructions carefully to enhance your network security skills.
Download Presentation
Please find below an Image/Link to download the presentation.
The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author. Download presentation by click this link. If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.
E N D
Presentation Transcript
TrafficAnalysis (Snot/Tcpdump) https://sites.google.com/site/iasoncs/home/n etwork-security/traffic-analysis-snort- tcpdump The PPT is used to supplement the materials in the link above just in case you may have problem.
You should be fine if you follow these rules, good luck! Rule 1: install android studio instead of adb mentioned in the link Rule 2: copy tcpdump file into your rooted device by following the instructions in this PPT instead of those in the link. Rule 3: root your device Rule 4: set the ip address (variable) in client code with the actual ip address of your desktop where the server is running.
Root your device http://www.mashinie.com/iroot-rooting- guide.html Help you obtain root privilege so that you can copy/move/delete files in your device through adb shell.
Install tcpdump in your device http://www.androidtcpdump.com/android- tcpdump/downloads Open cmd > adb push path/to/tcpdump /sdcard/tcpdump > adb shell > su (allow root privilege from your device as promoted) > cp /sdcard/tcpdump /data/local/tcpdump
Download code https://sites.google.com/site/iasoncs/home/n etwork-security/traffic-analysis-snort- tcpdump Download server and client code from the bottom of the link above. Run client in your rooted device through your android studio Run server code from your cmd (go to bin dir) > java TCPDesktopServer
Now following 2. Catch the Information section in https://sites.google.com/site/iasoncs/home/n etwork-security/traffic-analysis-snort- tcpdump