ArpSpoofing 101:
http://www.irongeek.com/i.php?page=security/arpspoof

Video Demonstration:
http://www.irongeek.com/i.php?page=videos/using-cain-to-do-a-man-in-the-middle-attack-by-arp-poisoning

An educator, Irongeek has developed presentation materials that touch on Cain, kernel IP Forwarding, Ettercap, Arptables and Dsniff to demonstrate principles of encrypted and unencryted protocols "Man in the Middle Attacks" or other interception on shared networks (wired and wireless).

Protecting against arpspoofing includes:

        Static ARP Entries in the Cache (Windows) or arptables/EBtables (Nix)
        ARPWatch ( http://www-nrg.ee.lbl.gov/ )

Switches and firewalls have limited capacity to protect against this exploit of the protocol design.

See also IronGeek's Mac Address Change HowTo:
http://www.irongeek.com/i.php?page=security/changemac

www.Obnosis.com |  http://en.wiktionary.org/wiki/Citations:obnosis | http://www.urbandictionary.com/define.php?term=obnosis (503)754-4452

Catch the January PLUG HackFest!   Kristy Westphal, CSO for the Arizona Department of Economic Security will provide a one hour presentation on forensics.

Laugh at this MSN Footer:


Proud to be a PC? Show the world. Download the “I’m a PC” Messenger themepack now. Download now.