Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Re: HTTP AUTH BASIC monowall.

From: Michael Holstein <michael.holstein () csuohio edu>
Date: Wed, 15 Mar 2006 11:46:52 -0500
which brings up a question... what are the odds that someone could
forcefully redirect traffic to their proxy after having compromised a
network? Could this be done with arp poisoning? I haven't toyed with
that in a while so I can't say yes or no...
If it's Ethernet, and you're on the same broadcast network, yes. Check out arpspoof (part of dsniff). You also need to setup a userspace router to forward the packets -- easiest way is fragrouter. 

FYI : this also works quite well on wireless.

~Mike.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Previous By Date Next
Previous By Thread Next

Current thread: