 Definition of Sniffing
 Protocols Vulnerable to Sniffing
    o Tool: Network View – Scans the Network for Devices
    o The Dude Sniffer
    o Ethereal
    o tcpdump
 Types of Sniffing
    o Passive Sniffing
    o Active sniffing
 ARP - What is Address Resolution Protocol?
 ARP Spoofing Attack
    o How Does ARP Spoofing Work?
    o ARP Poisoning
    o Mac Duplicating Attack
 Tools for ARP Spoofing
    o Arpspoof (Linux-based tool)
    o Ettercap (Linux and Windows)
 MAC Flooding
 Tools for MAC Flooding
    o Macof (Linux-based tool)
    o Etherflood (Linux and Windows)
 Threats of ARP Poisoning
 IRS – ARP Attack Tool
 ARPWorks Tool
 Tool: Nemesis
 Sniffer Hacking Tools (dsniff package)
    o Arpspoof
    o Dnsspoof
    o Dsniff
    o Filesnarf
    o Mailsnarf
    o Msgsnarf
    o Tcpkill
    o Tcpnice
    o Urlsnarf
    o Webspy
    o Webmitm
 DNS Poisoning Techniques
 Types of DNS Poisoning:
    o Intranet DNS Spoofing (Local network)
    o Internet DNS Spoofing (Remote network)
    o Proxy Server DNS Poisoning
    o DNS Cache Poisoning
 Interactive TCP Relay
 Sniffers
    o HTTP Sniffer: EffeTech
    o Ace Password Sniffer
    o MSN Sniffer
    o SmartSniff
    o Session Capture Sniffer: NetWitness
    o Session Capture Sniffer: NWreader
    o Cain and Abel
    o Packet Crafter Craft Custom TCP/IP Packets
    o SMAC
    o NetSetMan Tool
    o Raw Sniffing Tools
    o Sniffit
    o Aldebaran
    o Hunt
    o NGSSniff
    o Ntop
    o Pf
    o IPTraf
    o EtherApe
    o Netfilter
    o Network Probe
    o Maa Tec Network Analyzer
 Tools
    o Snort
    o Windump
    o Etherpeek
    o Mac Changer
    o Iris
    o NetIntercept
    o WinDNSSpoof
 How to Detect Sniffing?
 AntiSniff Tool
 ArpWatch Tool
 Countermeasures

Source:
http://www.eccouncil.org/EC-Council%20Education/ceh-course-outline.htm

Don