Penetration Testing mailing list archives
RE: Properly Arp Cache Poisoning
From: "John Babio" <jbabio () po-box esu edu>
Date: Mon, 4 Jan 2010 07:55:38 -0500
Did you have the proper ip-forwarding setup on your NIX box? echo 1 > /proc/sys/net/ipv4/ip_forward Also if you cannot get it kicking check out arpspoof, linsniff, and fragrouter. They can also get the job done. -----Original Message----- From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On Behalf Of Leandro Quibem Magnabosco Sent: Wednesday, December 30, 2009 11:50 AM To: pen-test Subject: Properly Arp Cache Poisoning Hello guys, Recently I attempted an Arp Cache Poisoning to sniff over switched connections. The problem is that it works against my home computer but not against my laptop. When I try to sniff my laptop, it get DoS'ed. Sniffing my Desktop it all goes smoothly. What could be influential in this other than doing something wrong like a miss clicking onto another IP on ettercap or something or whatever? I tried this 5 times last night and I was pretty confused why I could not sniff my laptop and could sniff my Desktop. The ARP tables are as it should be for sniffing... this is where I wonder. Put your thoughts here so I can test it again this evening.and maybe get it to work. Tomorrow I will tell you if something else went wrong or what did I do to fix the issue. Thank you. -- Leandro Quibem Magnabosco. ------------------------------------------------------------------------ This list is sponsored by: Information Assurance Certification Review Board Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified. http://www.iacertification.org ------------------------------------------------------------------------ ------------------------------------------------------------------------ This list is sponsored by: Information Assurance Certification Review Board Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified. http://www.iacertification.org ------------------------------------------------------------------------
Current thread:
- Properly Arp Cache Poisoning Leandro Quibem Magnabosco (Jan 04)
- Re: Properly Arp Cache Poisoning Elliot Fernandes (Jan 04)
- Re: Properly Arp Cache Poisoning Leandro Quibem Magnabosco (Jan 04)
- Re: Properly Arp Cache Poisoning Chris Brenton (Jan 04)
- RE: Properly Arp Cache Poisoning John Babio (Jan 04)
- Re: Properly Arp Cache Poisoning Elliot Fernandes (Jan 04)