Network sniffing refers to using the network interface on a system to monitor or capture information sent over a wired or wireless connection. ![]() Try it using Invoke-Atomic Network Sniffing Description from ATT&CKĪdversaries may sniff network traffic to capture information about an environment, including authentication material passed over the network. Atomic Test #12 - Packet Capture Linux socket AF_PACKET,SOCK_RAW with BPF filter for UDP with sudo.Atomic Test #11 - Packet Capture Linux socket AF_INET,SOCK_PACKET,UDP with sudo.Atomic Test #10 - Packet Capture Linux socket AF_INET,SOCK_RAW,TCP with sudo.Atomic Test #9 - Packet Capture Linux socket AF_PACKET,SOCK_RAW with sudo.Atomic Test #8 - Filtered Packet Capture macOS using /dev/bpfN with sudo.Atomic Test #7 - Packet Capture macOS using /dev/bpfN with sudo.Atomic Test #6 - Windows Internal pktmon set filter.Atomic Test #5 - Windows Internal pktmon capture.Atomic Test #4 - Windows Internal Packet Capture.Atomic Test #3 - Packet Capture Windows Command Prompt. ![]() Atomic Test #2 - Packet Capture macOS using tcpdump or tshark.Atomic Test #1 - Packet Capture Linux using tshark or tcpdump.
0 Comments
Leave a Reply. |