Can I use puppy to spy on Windoze whilst Windoze spies on me

For discussions about security.
Post Reply
Message
Author
User avatar
Dave_G
Posts: 453
Joined: Thu 21 Jul 2011, 13:53

Can I use puppy to spy on Windoze whilst Windoze spies on me

#1 Post by Dave_G »

Hi all,

My setup at home consists of two windoze machines and a third one running puppy.
What I've always been suspicious of is the fact that my LAN activity increases
when I do a search on the windoze boxes.

So I got thinking, can I not add a second network card to my puppy box and
use it as a type of proxy server between my router and the rest of my network?

I have used ethereal/wireshark before but only to analyze the traffic on the machine it's installed on.
I have also briefly experimented with squid but only as a "blocking" type of proxy.

So I guess my question is, what software (if any) is available for puppy
that will let me "see" the traffic from any of the windoze machines but without blocking any of it?

Thanks in advance,
Dave.

User avatar
str4y
Posts: 42
Joined: Mon 01 Aug 2011, 22:59
Location: No. California
Contact:

Re: Can I use puppy to spy on Windoze whilst Windoze spies on me

#2 Post by str4y »

Dave_G wrote:Hi all,

So I guess my question is, what software (if any) is available for puppy
that will let me "see" the traffic from any of the windoze machines but without blocking any of it?
.
Kismet. I've had success installing it from .deb off of packages.debian.org .. had a bit of a learning curve before I figured out how to configure, but you just gotta read up on the mighty interwebs. There are various .iso's out there loaded up with these sorts of tools.. an old one that unfortunately hasn't been updated (but networking hasnt changed much, and the kismet still works) is called Knoppix STD .. Security Tools Distribution
http://s-t-d.org/download.html
(get your torrent client ready. The best way to spread linux! btw, while researching my reply, I noticed on linuxtracker.org that the Seeds Needed list was
Puppy Linux "wary" 5.1.2
.. so anyone with an always-connection (not me!) might consider helping spread the Puppy love. :idea: )
A newer one is called, I believe, BackTrack.
But those two mean closing Puppy to run their liveCD..

also suggested is to find an old (the 'free for personal use' era) version of Tiny Personal Firewall for your Winbloze boxes.. very descriptive of what's connecting and allows specific permissions to be set. Nice and small binary, too-- no stupid bloatware.

User avatar
Dave_G
Posts: 453
Joined: Thu 21 Jul 2011, 13:53

#3 Post by Dave_G »

Hi str4y,

Thanks for the tips.

I thought kismet was only for wifi related stuff, but judging by your reply you
obviously got it going on a wired network.
I assume it handles two network cards without a problem?

Funny you should mention BackTrack, just yesterday I was reading a review
on it in a Linux mag.

I will give them both a try.

User avatar
str4y
Posts: 42
Joined: Mon 01 Aug 2011, 22:59
Location: No. California
Contact:

#4 Post by str4y »

Dave_G wrote:Hi str4y,

Thanks for the tips.

I thought kismet was only for wifi related stuff, but judging by your reply you
obviously got it going on a wired network.
I assume it handles two network cards without a problem?
Actually, no, sorry about my confused reply-- though I noticed you're talking wired, I've only used it for wifi myself. Reading up a bit should resolve the q.. also useful is to surf the "related packages" part when looking at stuff on packages.debian.. and as regards Win stuff, if you havent already check www.majorgeeks.com for some vetted, well-sorted wares.
Good luck, & let us know.

User avatar
Dave_G
Posts: 453
Joined: Thu 21 Jul 2011, 13:53

#5 Post by Dave_G »

ok, thanks.

User avatar
Lobster
Official Crustacean
Posts: 15522
Joined: Wed 04 May 2005, 06:06
Location: Paradox Realm
Contact:

#6 Post by Lobster »

Puppy Raspup 8.2Final 8)
Puppy Links Page http://www.smokey01.com/bruceb/puppy.html :D

User avatar
Dave_G
Posts: 453
Joined: Thu 21 Jul 2011, 13:53

#7 Post by Dave_G »

Hi Lobster,

Thanks for the link, I didn't know about AttackPup and certainly looks very good
and a whole lot smaller then BackTrack.

However unless I'm mistaken AP is more geared towards wifi, whereas I'm looking
for something that supports wired networks using two network cards.
(a combination of proxy server and packet sniffer).

Dave.

nooby
Posts: 10369
Joined: Sun 29 Jun 2008, 19:05
Location: SwedenEurope

#8 Post by nooby »

I know nothing but I have heard that some guys make use of older computers as very programmable "firewalls" to put in between the hi end computer them use daily and the Router. That way them can see everything that goes on in that windows?

Am I wrong. Or can it still hide by hijacking other traffic so it goes under the RADAR?
I use Google Search on Puppy Forum
not an ideal solution though

User avatar
Dave_G
Posts: 453
Joined: Thu 21 Jul 2011, 13:53

#9 Post by Dave_G »

Hi nooby,

That is pretty much what I want to do, use an old computer with puppy
on it simply monitoring what comes in and out.

You said "Or can it still hide by hijacking other traffic so it goes under the RADAR?"

I suppose that some traffic could be "embedded" onto other packets
and I suppose that the actual data in the packets could even be encrypted
but it does not matter since one can always trace the destination by IP address
and see which port/s it's using and block them if needed.

nooby
Posts: 10369
Joined: Sun 29 Jun 2008, 19:05
Location: SwedenEurope

#10 Post by nooby »

Unfortunately I have no link but I vaguely remember the title was something like. Use old computer as a programmable Firewall.

Not sure if it was here in Puppy forum or even in Swedish on idg.se
which seems odd but it was a year or two back in time so my poor memory can mix up things.

As to real clever guys do hide behind other traffic. That has been confirmed them do but as you say some trace of what them do should be able to sift out. Every wild idea can have some remote truth in it :)

Sadly I know too little to be of real help just wanted to mention the possibility to make a highly programmable Firewall that way.

I leave this thread now to not be too noisy
I use Google Search on Puppy Forum
not an ideal solution though

User avatar
Dave_G
Posts: 453
Joined: Thu 21 Jul 2011, 13:53

#11 Post by Dave_G »

No problem nooby, thank you for your input.

Post Reply