WOW! Great article, this is just what I was looking for, nice job Raul.

This will be the wrap-up to http://www.askapache.com/2006/security/sniffing-on-ethernet-undetected.html ...

[ more ]  [ reply ]

Great article. I have one quesiton. In the U.S. the police need a wiretap to intercept communications. How do you collect only the management and control packets and NOT any data or potential communications. Take for example when a rouge wireless client needs to be identified and tracked down. ...

[ more ]  [ reply ]

If you would like to do network forensic analysis without paying a dime I would suggest NetworkMiner:

http://networkminer.wiki.sourceforge.net/NetworkMiner

You can use NetworkMiner in order to extract files transfered over HTTP, FTP, TFTP and SMB. If you are planning on doing WiFi forrensic you ...

[ more ]  [ reply ]