Eavesdropping vs. sniffing

Both are same kind of attacks. The difference is Eavesdropping could be in any form (Physical to logical), where the sniffing is more electronics/network related term.


No, these definitions are not standard.

The difference as I've heard it in many cases is that sniffing is specific to actively intercepting communications, while eavesdropping can occur through a side channel or even unintentionally.

Metaphorically, sniffing is if you open my mail. Eavesdropping is when you listen in on me and Alice talking in the kitchen.

But I've yet to find a solid definition written down somewhere that is generally accepted.


Eavesdropping vs. sniffing

According to their definitions, sniffing involves reading or monitoring whole packets, whereas eavesdropping seems like it differs mostly by 1. finding incomplete packets rather than complete ones, and 2. using Ettercap in addition to technologies like tcpdump and and wireshark.

Finding incomplete packets can be accomplished by hacking and scraping the memory, Ettercap Tcpdump and Wireshark are network analyzers that can sniff and analyze. Memory scraping can be accomplished by malware or hardware.

  • Eavesdropping literally means "hanging from the eave of a building so as to hear what is said within". While it can include wired and wireless interception it can also include placement of a microphone or physical proximity to overhear conversations.

    Direct wired connections to voice or data sources should operate losslessly but microphone interception of voice isn't guaranteed to be lossless, part of the communication may be missing.

    Use of a microphone provides a different source of information than packet sniffing, passwords or secret information might be disclosed to a microphone which are never sent by computer or communicated by phone line.

    Where an electronic device is used the information gathered can be retransmitted by wire or wirelessly, often in an encrypted burst to avoid detection.

  • Spying is done visually and may not involve eavesdropping, in the US the use of cameras without microphones isn't eavesdropping under US law. Takeover of TV, monitor and laptop webcams by malware is a legitimate concern but may not include the ability to packet sniff.

  • Packet sniffing, or sniffing, is interception of data packets by wire or air (wirelessly). It is a specific subset of eavesdropping which may include network analysis. It is usually lossless (all information is captured, possibly encrypted maybe not).

  • Surveillance is an all encompassing term covering all of the above and much more.