If we as a human absolutely we will know who is Alan and who is Brian by recognizing them from their face, but for our computer they depend on the ARP table network mapping (OSI layer 2 and layer 3).



<table border="1" cellpadding="1" cellspacing="1" style="width: 500px;">

Name           IP   Address                         MAC Address

Alan              00-00-00-00-00-00-00-01

Brian             00-00-00-00-00-00-00-02

Cracker             00-00-00-00-00-00-00-03



So if Alan want to connect to Brian, the computer will translate Brian IP address( to its MAC address 00-00-00-00-00-00-00-02.

The correct way is should be like that, but because the attacker doing an ARP spoofing or ARP poisoning they will change the ARP mapping.

If the network already poisoned, when Alan want to send packet to Brian, Alan will translate Brian( with MAC 00-00-00-00-00-00-00-03 and vice versa.

- See more at:   网络映射的相关知识


In this tutorial I will show you how the ARP spoofing can be happen and how to prevent it in your own computer so you will not be the victim.




1. To prevent ARP spoofing and man in the middle attack in your local area network you need to add a static ARP.

2. This trick become troublesome if your router changed frequently, so if you use this prevention method you need to delete the old one and add the new one if it changed

3. You can download and use my Static ARP routing changer to change your ARP static routing automatically

- See more at:








相关知识:    OSI七层模型   【OSI layer 2 数据链路层(Datalink Layer)】   【OSI layer 3网络层(Network Layer)】











C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 

netsh interface ip add neighbors "本地连接" "" "00-1f-33-b5-a0-6e"


posted @ 2014-12-05 16:49  ChuckLu  阅读(453)  评论(0编辑  收藏  举报