Penetration Testing mailing list archives

RE: discovering network layout at layer2

From: "Dave Killion" <dkillion () charter net>
Date: Thu, 12 Feb 2004 15:08:34 -0800

Harry de Grote mentioned:

arp requests for the whole subnet? ;)


The hacker's choice R U There (or just "THCRUT") facilitates this nicely.
Give it an IP and subnet mask, and that sucker will spit out several
thousand parallel threads for ARP requests.  Scan a B in nothing flat.
What's great is, not many systems detect ARP scans yet, so your IP-layer
scan detectors generally miss this.

-Dave


---------------------------------------------------------------------------
Free trial: Astaro Security Linux -- firewall with Spam/Virus Protection

Protect your network with the comprehensive security solution that
integrates six applications for ease of use and lower TCO.

Firewall - Virus protection - Spam protection - URL blocking - VPN
- Wireless security.

Download 30-day evaluation at:
http://www.astaro.com/php/contact/securityfocus.php
----------------------------------------------------------------------------

Current thread:

discovering network layout at layer2 Dev (Feb 06)
- <Possible follow-ups>
- RE: discovering network layout at layer2 Aditya [ Aditya Lalit Deshmukh ] (Feb 11)
  - Re: discovering network layout at layer2 Harry de Grote (Feb 12)
  - RE: discovering network layout at layer2 Rob Shein (Feb 12)
- RE: discovering network layout at layer2 Brian_Peterson (Feb 12)
- RE: discovering network layout at layer2 Dave Killion (Feb 13)