Help
How can I capture data leaving a small (12 user) peer to peer network? I want to see if one of the computers, without having to check each one, has a virus that is sending out data to its control computer or anywhere else. Anyone know how I can accompish this. I am familiar with wireshark. Does it have the feature I'm looking for?
Page 1 of 1
How can I capture data leaving a network
Back to top
#2
- Forum Addict
-
- Group: Members
- Posts: 1,309
- Joined: 02-July 09
- Gender:Male
Posted 27 October 2009 - 12:25 AM
How will you know the difference between what the virus is sending out and what is normal traffic? If you suspect one PC is infected your best bet it to get them all scanned. There are viruses out now that can infect other PCs on the network.
If you know what you are looking for Wireshark will show it to you, its job is capturing packets and filtering that info for you. But if you are asking if it has a "Hey this is a packet from a virus" I don't think it does.
If you know what you are looking for Wireshark will show it to you, its job is capturing packets and filtering that info for you. But if you are asking if it has a "Hey this is a packet from a virus" I don't think it does.
Share this topic:
Page 1 of 1