Implementation of Network Sniffing Tool with Carving

Seo-jeong Kim; Yun-Hee Kim; Yu-jin Jeon; Eun-jung Choi

Download PDF Open PDF in browser

Switch back to the title and the abstract in Korean

Implementation of Network Sniffing Tool with Carving

EasyChair Preprint no. 3697

4 pages•Date: June 29, 2020

Seo-jeong Kim, Yun-Hee Kim, Yu-jin Jeon and Eun-jung Choi

Abstract

In this paper, we introduce a network traffic monitoring tool equipped with a carving module. It collects network traffic through real-time monitoring, saves file data before it is tampered, and recovers files. Therefore, a carving module that can be restored to the original file is developed so that it can be easily used in a small network or a group requiring monitoring and forensic functions.

It also proposes a method of recovering files in which files of different extensions are separated in real-time through only network traffic sniffing and recovering files whose end of the file is not clearly known because there is no footer signature.

Keyphrases: carving, Implementation of Tool, network sniffing

Links:

https://easychair.org/publications/preprint/FKNL

BibTeX entry

BibTeX does not have the right entry for preprints. This is a hack for producing the correct reference:

@Booklet{EasyChair:3697,
  author = {Seo-jeong Kim and Yun-Hee Kim and Yu-jin Jeon and Eun-jung Choi},
  title = {Implementation of Network Sniffing Tool with Carving},
  howpublished = {EasyChair Preprint no. 3697},

  year = {EasyChair, 2020}}

Download PDF Open PDF in browser