Penetration Testing mailing list archives
Re: Properly Arp Cache Poisoning
From: Elliot Fernandes <elliotfernandes () yahoo com>
Date: Mon, 4 Jan 2010 01:54:24 -0800 (PST)
Your port forwarding isn't on. this results you receiving packets intended for the victim, but NOT the victim. Turn packet forwarding so you receive the packets then send them out again... r00t@pent3st3r# echo 1 > /proc/sys/net/ipv4/ip_forward --- On Wed, 12/30/09, Leandro Quibem Magnabosco <leandro.magnabosco () fcdl-sc org br> wrote:
From: Leandro Quibem Magnabosco <leandro.magnabosco () fcdl-sc org br> Subject: Properly Arp Cache Poisoning To: "pen-test" <pen-test () securityfocus com> Date: Wednesday, December 30, 2009, 8:50 PM Hello guys, Recently I attempted an Arp Cache Poisoning to sniff over switched connections. The problem is that it works against my home computer but not against my laptop. When I try to sniff my laptop, it get DoS'ed. Sniffing my Desktop it all goes smoothly. What could be influential in this other than doing something wrong like a miss clicking onto another IP on ettercap or something or whatever? I tried this 5 times last night and I was pretty confused why I could not sniff my laptop and could sniff my Desktop. The ARP tables are as it should be for sniffing... this is where I wonder. Put your thoughts here so I can test it again this evening.and maybe get it to work. Tomorrow I will tell you if something else went wrong or what did I do to fix the issue. Thank you. -- Leandro Quibem Magnabosco. ------------------------------------------------------------------------ This list is sponsored by: Information Assurance Certification Review Board Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified. http://www.iacertification.org ------------------------------------------------------------------------
------------------------------------------------------------------------ This list is sponsored by: Information Assurance Certification Review Board Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified. http://www.iacertification.org ------------------------------------------------------------------------
Current thread:
- Properly Arp Cache Poisoning Leandro Quibem Magnabosco (Jan 04)
- Re: Properly Arp Cache Poisoning Elliot Fernandes (Jan 04)
- Re: Properly Arp Cache Poisoning Leandro Quibem Magnabosco (Jan 04)
- Re: Properly Arp Cache Poisoning Chris Brenton (Jan 04)
- RE: Properly Arp Cache Poisoning John Babio (Jan 04)
- Re: Properly Arp Cache Poisoning Elliot Fernandes (Jan 04)