HackFest Series: Using Cain for Man in Middle Attacks (ARP …

Top Page
Attachments:
Message as email
+ (text/plain)
+ (text/html)
+ (text/plain)
Delete this message
Reply to this message
Author: Lisa Kachold
Date:  
To: plug-discuss
Subject: HackFest Series: Using Cain for Man in Middle Attacks (ARP ARP ARP)

ArpSpoofing 101:
http://www.irongeek.com/i.php?page=security/arpspoof

Video Demonstration:
http://www.irongeek.com/i.php?page=videos/using-cain-to-do-a-man-in-the-middle-attack-by-arp-poisoning

An educator, Irongeek has developed presentation materials that touch on Cain, kernel IP Forwarding, Ettercap, Arptables and Dsniff to demonstrate principles of encrypted and unencryted protocols "Man in the Middle Attacks" or other interception on shared networks (wired and wireless).

Protecting against arpspoofing includes:



Static ARP Entries in the Cache (Windows) or arptables/EBtables (Nix)


ARPWatch ( http://www-nrg.ee.lbl.gov/ )

Switches and firewalls have limited capacity to protect against this exploit of the protocol design.

See also IronGeek's Mac Address Change HowTo:
http://www.irongeek.com/i.php?page=security/changemac

www.Obnosis.com | http://en.wiktionary.org/wiki/Citations:obnosis |
http://www.urbandictionary.com/define.php?term=obnosis (503)754-4452
Catch the January PLUG HackFest! Kristy Westphal, CSO for the Arizona Department of Economic
Security will provide a one hour
presentation on forensics.

Laugh at this MSN Footer:

_________________________________________________________________
Proud to be a PC? Show the world. Download the “I’m a PC” Messenger themepack now.
hthttp://clk.atdmt.com/MRT/go/119642558/direct/01/---------------------------------------------------
PLUG-discuss mailing list -
To subscribe, unsubscribe, or to change your mail settings:
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss