Home page logo
/

basics logo Security Basics mailing list archives

RE: sniffing in a switched network - a presentation on ARP spoofing
From: "Shane Singh" <shane () nextwaveaudio com au>
Date: Wed, 15 Jun 2005 08:33:41 +1000

And a whitepaper on how to detect ARP spoofing.

http://www.foundstone.com/resources/perspectives/AskTheExpert-200406.pdf

-- 
Shaineel Singh
e: mailto: shane () nextwaveaudio com au 
w: http://nextwaveaudio.com.au/shsingh 

-- 
Make love not tupperware

-----Original Message-----
From: Manu Garg [mailto:manugarg () gmail com] 
Sent: Tuesday, 14 June 2005 6:49 AM
To: security-basics () securityfocus com
Subject: sniffing in a switched network - a presentation on 
ARP spoofing


Many of us know that sniffing is possible in a shared i.e. 
non-switched ethernet environment. But only few of us know 
that sniffing is also possible in a switched ethernet 
environment. One of the reasons is that it's not that 
straighforward. But it's not impossible or difficult. You can 
use man in the middle technique like ARP spoofing to sniff in 
a switched environment.

This presentation is an attempt to explain how can somebody 
sniff in a switched ethernet using ARP spoofing. Dsniff has 
existed for long as a tool for various sniffing activities. 
But recently, tools like EttercapNG have made it easier.

Link to my original post and presentation - 
http://manugarg.freezope.org/2005/06/sniffing-in-switched-netw
ork-many-of.html

cheers,
-Manu
_________ 
Manu Garg
http://manugarg.freezope.org
"Truth will set you free!"


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]