Penetration Testing mailing list archives
Re: ArpON detecs and blocks Arp Poisoning/Spoofing attacks
From: Rafa <rafa.sgomez () gmail com>
Date: Mon, 4 Aug 2008 09:10:59 +0200
Hi All !! For anyone who wants to know more about ArpON (and knows Spanish), i did a brief explanation about how it works (in spanish :-)) with a practical example. I posted it in my blog : http://rafasec.blogspot.com/2008/06/defindete-de-ataques-arp-spoofing-mitm.html I can tell you that ArpON works fine !! Regards On Sun, Aug 3, 2008 at 1:59 AM, Andrea Di Pasquale <spikey.it () gmail com> wrote:
Hi, My name is Andrea Di Pasquale and I study at Secondary High School "S. Quasimodo" in Catania, Italy. Some time ago I released a research project related to the security of the address resolution protocol Arp, the project name being Arpon (Arp handler inspection). Arpon makes the protocol secure without recurring to algorythms, SSL or any other technology which is not part of the standard protocol. Arpon is a daemon based on the Arp handling mechanism in kernel space that uses different policies either in static environments (Static Arp Inspection algorythm), or in DHCP dynamic ones (Dynamic Arp Inspection algorythm). Arpon is written as a user space tool so it can work on posix platforms: infact it is extensively tested on platform such as Max OS X, FreeBSD, OpenBSD, NetBSD and Linux. Today I suggest you to have a look at the project, because I think it has great potentiality, the only competitor on the market being Cisco's DAI on Catalyst 4500 devices (which uses DHCP to securify ARP; Arpon just uses the standard kspace protocol implementation instead). Furthermore, Arpon is Open Source software. Links: http://arpon.sourceforge.net/ http://arpon.sourceforge.net/documentation.html http://arpon.svn.sourceforge.net/viewvc/arpon/ Thanks for the attention, I hope in your interest. Cordially, Andrea ------------------------------------------------------------------------ This list is sponsored by: Cenzic Top 5 Common Mistakes inSecuring Web Applications Get 45 Min Video and PPT Slides www.cenzic.com/landing/securityfocus/hackinar ------------------------------------------------------------------------
-- Rafa Sánchez http://rafasec.blogspot.com (cc) --
Current thread:
- ArpON detecs and blocks Arp Poisoning/Spoofing attacks Andrea Di Pasquale (Aug 03)
- Re: ArpON detecs and blocks Arp Poisoning/Spoofing attacks Rafa (Aug 04)