sniffing

i am working on security and other stuff about my web sites. in my country online payments work like paypal. mean you should pass some parameters such as Amount,MerchantID,ReturnURL,ResNum(OrderID) by post method to bank and bank will pass some parameters such as MID,Status,ResNum to you after payment. during this requests and responses somebody can use the software below to sniff and tamper: http://www.fiddler2.com/fiddler2/ please see this video: http://www.fiddler2.com/fiddler/help/video/ i test it and it also works on https by using a certificate. wow... how can i prevent this sniffing and

I wrote a Web Application and I would like to allow other developers to get the information from it. The server Im working on is not that awsome and cant handle that many request, so the idea is to generate and assign api keys to everyone that wants to query our information. With Api keys I can limit the daily requests and perhaps collect some statistics to see what information is really useful for the other developers. The thing is, Im concerned about the security aspect of it. Since the Api key is going to be sent to our server (via GET/POST etc), someone could sniff the request with

I am writing an application in linux and need to access the serial port. For debugging purposes I need to snif what comes and/or goes through the serial port. I looked around and found out I can use strace to do that. So I tried the following: -I print the file_descriptor of the serial device that I use. (after restarting my application a few times, I reassured myself that the file_descriptor number my application gets from kernel is "4" -if i start my application as strace -e write=4 ./myapp , I would expect to get messages in the terminal, from file_descriptor "4" only. instead I get looots

I have a question concerning tcp packet sniffing with golang. We have written a small tool which captures all incoming TCP packets comming from a fibre Tap. The current implementation uses a libpcap wrapper under Linux. We need to port this tool to Windows. Of course, it is not possible at the moment. So my question is, is there a cross platform solution for sniffing packets? We only need TCP packets, IP headers , no Ethernet Data and not all features of libpcap. If there is no cross platform solution, two Code implementation would be ok, too. I know one can use raw sockets under Linux (and

First, I'm a beginner in python. I developed a simple raw packet sniffer utilizing the PF_PACKET interface that operates at layer 2. The sniffer simply figures out the following... - Ethernet Header (Source - Destination - Protocol) - IP Header (Source IP - Destination IP) - TCP Header(Source Port - Destination Port) Here's the code I've written so far... #!/usr/bin/env python import struct import socket import binascii rawSocket=socket.socket(socket.PF_PACKET,socket.SOCK_RAW,socket.htons(0x0800)) #ifconfig eth0 promisc up receivedPacket=rawSocket.recv(2048) #Ethernet Header... ethernetHeader