Jump to content

Recommended Posts

Posted

Hi!

I just tried doing a man in the middle attack at work using tools shown in 1x03 ep and connected on the wired lan .. works gr8.

Was wondering if i can do the same connected through wireless.

Posted

If its ARP cache poisoning, then yes.

Its not physical layer dependent, with wireless though, if you have a card that will catch all the packets and you know the encryption key (if there is one) then you can just read the packets without needing to do any poisoning.

  • 1 month later...
Posted
Can APR Poisoning be detected? or tracked later?

Yes, it can. There are tools that monitor the amount of ARP requests / responses and report if there are too many.

Posted
Yes, it can. There are tools that monitor the amount of ARP requests / responses and report if there are too many.

But how common is that and Cain/Abel allows for random fake MAC addresses to limit pointing the finger at you.

Posted
But how common is that and Cain/Abel allows for random fake MAC addresses to limit pointing the finger at you.

Medium to large companies usually have IDS (Intrusion Detection Systems) on their networks which detect this and many other network threats in real time. Other than that, not many networks have anything like that running.

Posted
If its ARP cache poisoning, then yes.

Its not physical layer dependent, with wireless though, if you have a card that will catch all the packets and you know the encryption key (if there is one) then you can just read the packets without needing to do any poisoning.

any wireless card will work.

Posted

I wouldn't try to do arp poisoning at work if you're not working in IT. I take that back, I wouldn't do it period. That type of stuff can come back and bite you in the ass. Source fire will definitely know what's up depending on what your company does.

Posted

what you do is drive up in the parking lot on your day off and then arp spoof all you want.

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...