Home page logo
/

pen-test logo Penetration Testing mailing list archives

Re: Properly Arp Cache Poisoning
From: Elliot Fernandes <elliotfernandes () yahoo com>
Date: Mon, 4 Jan 2010 01:54:24 -0800 (PST)

Your port forwarding isn't on. this results you receiving packets intended for the victim, but NOT the victim. Turn 
packet forwarding so you receive the packets then send them out again...

r00t () pent3st3r# echo 1 > /proc/sys/net/ipv4/ip_forward

--- On Wed, 12/30/09, Leandro Quibem Magnabosco <leandro.magnabosco () fcdl-sc org br> wrote:

From: Leandro Quibem Magnabosco <leandro.magnabosco () fcdl-sc org br>
Subject: Properly Arp Cache Poisoning
To: "pen-test" <pen-test () securityfocus com>
Date: Wednesday, December 30, 2009, 8:50 PM
Hello guys,

Recently I attempted an Arp Cache Poisoning to sniff over
switched connections.
The problem is that it works against my home computer but
not against my laptop.
When I try to sniff my laptop, it get DoS'ed.
Sniffing my Desktop it all goes smoothly.

What could be influential in this other than doing
something wrong like a miss clicking onto another IP on
ettercap or something or whatever?
I tried this 5 times last night and I was pretty confused
why I could not sniff my laptop and could sniff my Desktop.
The ARP tables are as it should be for sniffing... this is
where I wonder.

Put your thoughts here so I can test it again this
evening.and maybe get it to work.
Tomorrow I will tell you if something else went wrong or
what did I do to fix the issue.

Thank you.
--
Leandro Quibem Magnabosco.

------------------------------------------------------------------------
This list is sponsored by: Information Assurance
Certification Review Board

Prove to peers and potential employers without a doubt that
you can actually do a proper penetration test. IACRB CPT and
CEPT certs require a full practical examination in order to
become certified. 
http://www.iacertification.org
------------------------------------------------------------------------




      

------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT 
and CEPT certs require a full practical examination in order to become certified. 

http://www.iacertification.org
------------------------------------------------------------------------


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault