Penetration Testing mailing list archives
Re: Sniffing on a switch
From: NewYork User <newyorkuser () gmail com>
Date: Wed, 2 Nov 2005 10:20:16 -0500
There is a great tool called WinARP spoofer for windows. This tool has a nice GUI and is very easy to use. It basically sends ARP broadcast continuously and updates ARP table on all the PCs that are connected to the switch; makes your PC a gateway and forwards to traffic to the gateway (Typical man-in-the-middle). After you start spooofing, you can use any of your favorite sniffer to capture all the traffic on the switch. I use Ethereal. WinARP spoofer and Ethereal as a combination works great. Give it a shot. http://www.addict3d.org/index.php?page=downloadfile&ID=3565 Hope this helps. ------------------------------------------------------------------------------ Audit your website security with Acunetix Web Vulnerability Scanner: Hackers are concentrating their efforts on attacking applications on your website. Up to 75% of cyber attacks are launched on shopping carts, forms, login pages, dynamic content etc. Firewalls, SSL and locked-down servers are futile against web application hacking. Check your website for vulnerabilities to SQL injection, Cross site scripting and other web attacks before hackers do! Download Trial at: http://www.securityfocus.com/sponsor/pen-test_050831 -------------------------------------------------------------------------------
Current thread:
- AW: Sniffing on a switch Marc . Werner (Nov 01)
- Re: Sniffing on a switch coryrc (Nov 01)
- Re: Sniffing on a switch NewYork User (Nov 03)
- Re: Sniffing on a switch coryrc (Nov 01)