Jump to content

Finaly Year Project(networking)


Overkill

Recommended Posts

hey guys im need need of your l33t advice!

so im a final year student at uni and i have decided to do "ARP cache poisoning through Man in the Middle attacks" for my final year project so here is a small overview what what i intend to do

*Exploring the design vulnerabilities in ARP

* The tools and methods which are used to perform MIMTM attacks based on the above vulnerabilities

*studying current available mitigation techniques available

*developing a new mitigation technique or improving a current mitigation technique ( i am leaning towards combining 2 mitigation techniques that already exist)

so what tools would you suggest that i use in this project?? will i be able to use the wifi pinapple or the Throwing Star LAN Tap?? or any other tool you guys might have?

i also plan to use Katana and Ettercap to demonstrate the attacks (physical machines will be used for this) i also would like to know more tools that i can use to do these attacks

i would greatly appreciate if you guys would be able to share your thoughts and ideas on this and hopefully guide me through doing the attacks part of this project

ive already emailed darren but didn't get any reply from him, but its ok i understand he has a lot of work to do

thanks in advance :)

Link to comment
Share on other sites

Throwing Star LAN Tap in itself, is a sort of mitm, just hardware wise. A hub would be even easier, since you can see traffic for everyone at the same time, without having to monitor either in or out via the throwing star tap.

Doing the attacks is the easy part, since the tools do all of that for you. Ettercap, Cain and Able, etc, are point and click or variable fed CLI stuff. Learn about how ARP works, why the attacks work, and why they won't go away any time soon. There are methods of protection, not many that are of much use, but you can always go static arp entries, but depending on the OS, might remove on reboots, etc. I use a bat file to keep mine in for windows using the netsh command to force my routers mac and other devices on my network. Wired is much harder to spoof in those instances but not fullproof, but wireless on the other hand you can spoof your mac address as well as poison the arp cache with your IP as the routers, and take complete control over the network traffic.

This is a school project though, you should research the tools and test all of it out on your own.

Edited by digip
Link to comment
Share on other sites

Ummm, you can do that on a wired connection as well, it doesn't matter if its wireless or not :/

Never said you couldn't. Macchanger works on wired nics, and windows has tools for doing the same thing, but on a wired network, it tends to break things and stop all traffic on some consumer routers and switches.

Link to comment
Share on other sites

Throwing Star LAN Tap in itself, is a sort of mitm, just hardware wise. A hub would be even easier, since you can see traffic for everyone at the same time, without having to monitor either in or out via the throwing star tap.

Doing the attacks is the easy part, since the tools do all of that for you. Ettercap, Cain and Able, etc, are point and click or variable fed CLI stuff. Learn about how ARP works, why the attacks work, and why they won't go away any time soon. There are methods of protection, not many that are of much use, but you can always go static arp entries, but depending on the OS, might remove on reboots, etc. I use a bat file to keep mine in for windows using the netsh command to force my routers mac and other devices on my network. Wired is much harder to spoof in those instances but not fullproof, but wireless on the other hand you can spoof your mac address as well as poison the arp cache with your IP as the routers, and take complete control over the network traffic.

This is a school project though, you should research the tools and test all of it out on your own.

thanks alot man, yeah doing all the research now :)

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...