Welcome guest. Before posting on our computer help forum, you must register. Click here it's easy and free.

« previous next »
Pages: [1]   Go Down

Author Topic: Sniffing Set top boxes  (Read 3822 times)

0 Members and 1 Guest are viewing this topic.

reborn

    Topic Starter


    Rookie
  • "Ubuntu - Linux For Human Beings."
  • Certifications: List
  • Experience: Expert
  • OS: Linux variant
Sniffing Set top boxes
« on: March 16, 2016, 09:48:52 AM »
Hi all,

I'am trying to sniff the traffic of set top box which is connected to local 5 port netgear switch,
all i can see is udp streams and ssdp requests and that too from different ip address which is not reachable if i try to ping / nmap
also Set top box ip address is like 192.168.x.x and from that i can only see ssdp requests and none other evident traffic like
authentication/any other port -ip connection /protocols etc
so the question arises here is , am i doing it right ? or i need to do something like port forwarding or port mirroring ?
i won't be able to do such thing i think because the switch doesnt have any such interface of changing configurations i guess.
any suggestions or advice will be very helpful.

thanks !
Logged
"Free software" is a matter of liberty, not price. To understand the concept, you should think of "free" as in "free speech," not as in "free beer."

Geek-9pm


    Mastermind
  • Geek After Dark
    • Thanked: 1026
    • Gekk9pm bnlog
  • Certifications: List
  • Computer: Specs
  • Experience: Expert
  • OS: Windows 10
Re: Sniffing Set top boxes
« Reply #1 on: March 16, 2016, 10:14:01 AM »
Why do you want to do that?
What tools are you musing?
 Either hardware or software?

This was popular a few years back.
http://www.pcmag.com/article2/0,2817,2348279,00.asp
Cisco Network Magic Pro 5.5
Quote
Excellent tool for learning about your home network. Easy way to share folders and printers. Displays a visual map of your network in real time.
But even the above report goes on to  say it has limits.
Logged

reborn

    Topic Starter


    Rookie
  • "Ubuntu - Linux For Human Beings."
  • Certifications: List
  • Experience: Expert
  • OS: Linux variant
Re: Sniffing Set top boxes
« Reply #2 on: March 16, 2016, 10:21:16 AM »
I'm using just wireshark to know what traffic is passing other than ssdp and udp streams, but it seems it only captures passively.
and i'm doing this to analyse STB traffic / information it sends across the network.
Logged
"Free software" is a matter of liberty, not price. To understand the concept, you should think of "free" as in "free speech," not as in "free beer."

camerongray



    Expert
    • Thanked: 306
    • Yes
    • Cameron Gray - The Random Rambings of a Computer Geek
  • Certifications: List
  • Computer: Specs
  • Experience: Expert
  • OS: Mac OS
Re: Sniffing Set top boxes
« Reply #3 on: March 16, 2016, 11:01:29 AM »
Your switch will be routing most of the traffic directly to the correct port (such as the one going out to the internet) so the PC doing the sniffing won't see many of the packets from the STB.  Therefore you would need something like port mirroring however this of course requires a switch that supports it.  A couple of cheaper options would be to connect the STB directly into your PC and use it to provide an internet connection to the box such as through Windows's internet connection sharing.  You could also pick up a cheap, used *hub* as this will blindly forward packets to all ports allowing you to sniff them (much like you get with a switch with port mirroring).
Logged

reborn

    Topic Starter


    Rookie
  • "Ubuntu - Linux For Human Beings."
  • Certifications: List
  • Experience: Expert
  • OS: Linux variant
Re: Sniffing Set top boxes
« Reply #4 on: March 17, 2016, 09:47:13 AM »
thanks cameron,
that was quite informative from you, so now another question is .. can i setup a server which STB communicates directly to on my machine?
if yes does anyone has such information on kind of server that has to be setup?
Logged
"Free software" is a matter of liberty, not price. To understand the concept, you should think of "free" as in "free speech," not as in "free beer."
Pages: [1]   Go Up
« previous next »