Detecting network packet analyzers
Posted on 1999-01-28
So Ive got this rogue laptop thats running some crap OS like 95 who keeps jacking into misc. ethernet ports and running some comercial packet grabber like netxray, LANanalyzer, etc. (Im not sure if its happening but Ive heard rumors).
I know in order for an app like that to work it has to drop the NIC into "promiscuous mode" so that it will grab every packet that goes by.
So my question is.. Is there any way to detect if someone is really grabbing packets or not? Anyone know of some slick tool or software package to detect this?
thanks in advance