Home page logo
/

pen-test logo Penetration Testing mailing list archives

RE: Properly Arp Cache Poisoning
From: "John Babio" <jbabio () po-box esu edu>
Date: Mon, 4 Jan 2010 07:55:38 -0500

Did you have the proper ip-forwarding setup on your NIX box? 

echo 1 > /proc/sys/net/ipv4/ip_forward

Also if you cannot get it kicking check out arpspoof, linsniff, and
fragrouter. They can also get the job done.

-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com]
On Behalf Of Leandro Quibem Magnabosco
Sent: Wednesday, December 30, 2009 11:50 AM
To: pen-test
Subject: Properly Arp Cache Poisoning

Hello guys,

Recently I attempted an Arp Cache Poisoning to sniff over switched 
connections.
The problem is that it works against my home computer but not against my

laptop.
When I try to sniff my laptop, it get DoS'ed.
Sniffing my Desktop it all goes smoothly.

What could be influential in this other than doing something wrong like 
a miss clicking onto another IP on ettercap or something or whatever?
I tried this 5 times last night and I was pretty confused why I could 
not sniff my laptop and could sniff my Desktop.
The ARP tables are as it should be for sniffing... this is where I
wonder.

Put your thoughts here so I can test it again this evening.and maybe get

it to work.
Tomorrow I will tell you if something else went wrong or what did I do 
to fix the issue.

Thank you.
--
Leandro Quibem Magnabosco.

------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review
Board

Prove to peers and potential employers without a doubt that you can
actually do a proper penetration test. IACRB CPT and CEPT certs require
a full practical examination in order to become certified. 

http://www.iacertification.org
------------------------------------------------------------------------


------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT 
and CEPT certs require a full practical examination in order to become certified.

http://www.iacertification.org
------------------------------------------------------------------------


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault