Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Cain & Able man in the middle attack

From: "Steven Adair" <steven () securityzone org>
Date: Wed, 12 Dec 2007 18:57:37 -0500 (EST)
It depends on where you are looking to do this.  Do you want to do this on
a Cisco device, on a few servers, or just a single machine?  It sounds
like you might be talking about a Windows workstation.  If that's the case
you can use arp -s for your gateway address and maybe any other devices on
your subnet that you talk to a lot.

You can also use something like arpwatch that will look for and notify you
of relevant changes in your arp table.

Steven
http://www.securityzone.org


I too have performed MITM attacks on my network with Cain & Able. Also
having grabbed a few HTTP and FTP passwords seeing that it was
successful I now need to secure my self against these attacks but how
can I do this? Would static MAC mappings in my hosts files do the
trick?

Thanks for your time
Bensley.

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------





------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: