原文:
随着网络入侵的不断发展,网络安全变得越来越重要,于是在网络系统中进行监听的研究也变得日益重要。网络监听技术是系统安全领域内一个非常敏感的话题,也是一项重要的技术,具有很强的现实应用背景。网络监听是网络监测、负载分析等管理活动常用的方法,同时也是黑客非法窃取信息的手段。网络监听与包过滤技术是网络入侵的核心技术,也是网络安全协议技术研究的核心技术。监听技术主要是对网络的状态、信息流动和信息内容等进行监视。而网络监听工具通过网络传输介质的共享特性实现抓包,获得当前网络的使用状况,为网络管理员对网络中的信息进行实时的监测、分析提供一个合适的工具。在网络入侵取证系统中,对网络上传送的数据包进行有效的监听即捕获包是目前取证的关键技术,只有进行高效的数据包捕获,网络管理员才能对所捕获的数据进行一系列的分析,从而进行可靠的网络安全管理。
本文即对网络监听技术的原理和实现进行了比较详细的介绍,讨论了监听技术的实现方法,主要介绍了如何在Win32环境中利用Winpcap开发包开发网络实时监听程序,给出了具体的设计与实现方法。详细描述Winpcap开发包的主要功能,分析网络监听程序的层次结构,监听应用程序实现方法,并在最后给出一个基于winpcap开发包的数据包抓取应用程序。
Original:
With the continuous development of network intrusion, network security has become increasingly important, so the network system to monitor the study also becoming increasingly important. Network monitoring technology is the area of security within the system a very sensitive topic, is also an important technology, a strong practical application background. Network monitoring network monitoring, analysis, load management activities commonly used method, it is also illegal hackers to steal information means. Network monitoring and packet filtering technology is the core technology for network intrusion, but also network security technology agreement on the core technology. Monitoring technology is the state of the network, information flows and information content, such as surveillance. The network monitoring tool for network transmission medium through the sharing of achieving Zhuabao, access to the use of the current network, network administrator for the network to conduct real-time information in the monitoring, analysis provide a suitable tool. Evidence in the network intrusion systems, the networks send data packets for effective monitoring kits that capture the current evidence is the key technology, the only efficient packet capture, network administrators can be captured by the data on a series of , A reliable network security management.
In this paper, the network monitoring technology that is the principle and achieve a more detailed briefing to discuss the technical monitoring of the implementation method, mainly on how to use Win32 environment Winpcap development kits development of real-time network monitoring procedures, given the specific design and Method. Winpcap development kits detailed description of the main features of the eavesdropping program hierarchical structure, monitor the application method and is given a winpcap development kits based on the data packets crawl applications.
Along with the network invasion's unceasing development, the network security becomes more and more important, therefore carries on the monitor in the network system the research also becomes day by day important. The network monitor technology is in the system safety domain a very sensitive topic, is also an important technology, has the very strong reality application background. The network monitor is the network monitor, the load analysis and so on management activity commonly used methods, simultaneously is also the hacker illegal steals the information the method. The network monitor and the package of filtration technology are the network invasion core technologies, is also the network security agreement engineering research core technologies. The monitor technology is mainly to the network condition, the information flowing and the information content and so on carries on the surveillance. But the network monitor tool realizes through the network transmission medium's sharing characteristic grasps the package, obtains the current network the behavior in service, carries on the real-time monitor, the analysis for in network administrator's to network information to provide an appropriate tool. In the network invasion evidence collection system, the data packet which transmits to the network in carries on the effective monitor namely to catch the package is the present evidence collection key technologies, only then carries on the highly effective data packet capture, the network administrator can the data which catches carry on a series of analyses, thus carries on the reliable network security management. this article namely and realized to the network monitor technology's principle has carried on the quite detailed introduction, discussed the monitor technology to realize the method, mainly introduced how to use Winpcap in the Win32 environment the development package development network real-time monitor procedure, gave the concrete design with to realize the method. Describes the Winpcap development package's major function in detail, the analysis network monitor procedure hierarchical structure, the monitor application procedure realizes the method, and is giving one finally based on the winpcap development package's data packet capture application procedure.
With the continuous development of network intrusion, network security has become increasingly important, so the network system to monitor the study also becoming increasingly important. Network monitoring technology is the area of security within the system a very sensitive topic, is also an important technology, a strong practical application background. Network monitoring network monitoring, analysis, load management activities commonly used method, it is also illegal hackers to steal information means. Network monitoring and packet filtering technology is the core technology for network intrusion, but also network security technology agreement on the core technology. Monitoring technology is the state of the network, information flows and information content, such as surveillance. The network monitoring tool for network transmission medium through the sharing of achieving Zhuabao, access to the use of the current network, network administrator for the network to conduct real-time information in the monitoring, analysis provide a suitable tool. Evidence in the network intrusion systems, the networks send data packets for effective monitoring kits that capture the current evidence is the key technology, the only efficient packet capture, network administrators can be captured by the data on a series of , A reliable network security management.
In this paper, the network monitoring technology that is the principle and achieve a more detailed briefing to discuss the technical monitoring of the implementation method, mainly on how to use Win32 environment Winpcap development kits development of real-time network monitoring procedures, given the specific design and Method. Winpcap development kits detailed description of the main features of the eavesdropping program hierarchical structure, monitor the application method and is given a winpcap development kits based on the data packets crawl applications.
手动翻译没问题,但汉语太滥了,你的摘要自己的工作写的太少了。
自己翻译吧!我看他们都用软件翻译的!自己翻译还能学英语!对吧!
内容全部来源于网络收集,如有侵权,请联系网站删除:QQ:24596024