Looking for relevant Security Whitepapers? Visit the SearchSecurity.com Research Library.
KevinBeaver
3540 pts. | Dec 12 2008 5:10PM GMT
You’ll need to ensure you’re network analyzer is using the right network adapter in promiscuous mode like Labnuke99 mentions. You’ll also need to plug into a monitor/span/mirror port on your switch in order to see everything on the segment. If you don’t have a managed switch, then you could use an Ethernet hub as long as the other host(s) you want to view traffic to/from are also plugged into that hub. As a last resort (I say so because you can crash your switch) you can use Cain & Abel to do ARP poisoning and essentially turn your switch into a hub so you can see everything. You can even use Cain for sniffing as well.