Transcript Web Services Using Visual .NET

Network Sniffer
Anuj Shah
Advisor: Dr. Chung-E Wang
Department of Computer Science
Agenda






Motivation for the project
Proposed Designed System
Methodology
Conclusion
Future projects
Questions
Motivation for the Project




The ability of computers to communicate comes with
many advantages and disadvantages.
It is highly important to monitor the computer network
for the suspicious programs to prevent any kind of data
hazard.
Sniffer is a tool that monitor and analyze the data
packets which are flowing in the network.
This project will gave me an opportunity to learn about
the .NET framework.
Proposed Designed System




The proposed system would be able to listen to the
network and capture packets which are over the network.
Further analyze the packets, check for the source and the
destination address, check for the protocol, its checksum
and much more.
Ability to capture packets from both the wired and the
wireless networks.
Tool will be based on Microsoft .NET environment and
written in C# and will be able to parse through TCP, IP,
DNS and many more packets.
Features

Some of the privileges that system will provide are:
–
–
–
–
–
–
–
Monitor bandwidth utilization.
Log the network traffic for future references.
Troubleshoot network problem.
network attacks.
Record source and the destination of the packets, can
be used for tracking purposes.
Capture packets from both wired and wireless LAN
Support for both IPV4 and IPV6 protocols.
General Concepts
Sample encapsulation of
application data from UDP to
a Link protocol frame
Internet Protocol Suite in operation
between two hosts connected via two
routers and the corresponding layers used
at each hop
Network Sniffer (Packet Analyzer)
Technology


C#
WinpCap Library
–
–
Windows Packet Capture Library(WinpCap) is the
library that allows applications to capture and transmit
network packets bypassing the protocol stack
It consists of a driver, that extends the operating
system to provide low-level network access, and a
library that is used to easily access the low-level
network layers
Methodology

I had to understand how the following technologies or
the concepts works:
–
–
–
.NET framework and its concepts
Different Packet formats
Drivers and the API’s
Conclusion




The concept and the technology for the system both
were new to me.
Cleared new concepts in .NET programming.
It was good to get a hands on experience on such a
networking project.
Good experience with working on Drivers and
different API’s.
Future Projects


Introduce new features like port scanning and also
analyze more on the packets.
Built the software to the next level which will also act
as a firewall and not just sniffer.
Questions
?