Abstract

Network packet sniffing tools are essential in cybersecurity, enabling the monitoring and analysis of network traffic to detect intrusions, optimize network performance, and enforce security policies. This systematic literature review conducts a comparative study of several widely used network packet sniffing tools such like Wireshark, Snort, Windump, and Ettercap. Each tool will be evaluated based on key performance metrics, including packet capture accuracy, processing speed, resource usage, filtering and analysis capabilities, and user interface usability. This research aims to provide cybersecurity professionals with a comprehensive understanding of the strengths and weaknesses of each tool. Based on these insights, the research work will aid in selecting the most appropriate tool for specific network analysis tasks, thereby enhancing the overall security posture of business applications. The methodology involves a detailed analysis of each tool’s features and performance, supported by user acceptance testing (UAT) and the presentation of findings for educational awareness. By systematically comparing these tools, the study aims to guide cyber security and forensics practitioners in making informed decisions, ultimately contributing to more effective and efficient network security management in business environments. The findings will also serve as a valuable resource for ongoing education and training in cybersecurity best practices.

Authors: Gideon Joseph, Jude Osamor, Funminiyi Olajide

Published in: International Conference on Information Society (i-Society-2024)

  • Date of Conference: 26-28 August, 2024
  • DOI: 10.20533/iSociety.2024.0008
  • ISBN: 978-1-913572-72-3
  • Conference Location: Churchill College, Cambridge, UK

0