|
Title: [Article]-Pick Your Poison - ARP, MAC, WiFi Post by: don on February 11, 2007, 12:10:31 AM Here's the next article revamped by Brian Wilson for his new column on EH-Net. Look for many more contributions from him as 2007 gets into gear.
[Article]-Pick Your Poison - ARP, MAC, WiFi (http://www.ethicalhacker.net/content/view/111/24/) By Brian Wilson, CCNA, CCSE, CCAI, MCP, Network+, Security+, JNCIA Quote (http://www.ethicalhacker.net/images/stories/columns/wilson/poison/1.jpg) In this paper we will cover the basics on Address Resolution Protocol (ARP), Media Access Control (MAC) Addresses, Wireless (WiFi), and layer 2 communications. I hope to explain how a "Man in the Middle Attack" works. The common name for this is ARP poisoning, MAC poisoning, or Spoofing. Before we can get into how the poisoning works, we need to learn about how the OSI Model (http://en.wikipedia.org/wiki/OSI_model) works and what happens at layer 2 of the OSI Model. To keep this basic we will only scratch the surface on the OSI model to get the idea of how protocols work and communicate with each other. The OSI (Open Systems Interconnection (http://en.wikipedia.org/wiki/Open_Systems_Interconnection)) Model was developed by the International Standards Organization (ISO) (http://www.iso.org) in 1984 in an attempt to provide some standard to the way networking should work. It is a theoretical layered model in which the notion of networking is divided into several layers, each of which defines specific functions and/or features. However this model is only a general guideline for developing usable network interfaces and protocols. Sometimes it may become very difficult to distinguish between each layer as some vendors do not adhere to the model completely. Despite all this the OSI model has earned the honor of being "the model" upon which all good network protocols are based.Enjoy and be sure to offer feedback, Don Title: Re: [Article]-Pick Your Poison - ARP, MAC, WiFi Post by: don on February 11, 2007, 02:42:01 PM Submitted to digg. Help get Brian's new column some well deserved notice by voting (digging) this story. Click the link below, and digg it:
http://www.digg.com/security/Pick_Your_Poison_ARP_MAC_WiFi Thanks, Don Title: Re: [Article]-Pick Your Poison - ARP, MAC, WiFi Post by: ChrisG on February 11, 2007, 06:35:19 PM pretty good article...consider it dugg
Title: Re: [Article]-Pick Your Poison - ARP, MAC, WiFi Post by: slimjim100 on February 11, 2007, 09:38:45 PM Thanks guys/gals I have more coming soon. :)
Thanks, Brian Title: Re: [Article]-Pick Your Poison - ARP, MAC, WiFi Post by: Kev on February 13, 2007, 12:30:49 AM I always enjoy reading your articles!
Title: Re: [Article]-Pick Your Poison - ARP, MAC, WiFi Post by: franklinbacs on February 13, 2007, 01:27:50 AM good article.. 8)
I do believe that ARP protocol is no longer supported in IPv6, it use ND to resolve physical addresses, is there other way to poison (spoof) if it used IPv6? Title: Re: [Article]-Pick Your Poison - ARP, MAC, WiFi Post by: slimjim100 on February 13, 2007, 06:39:36 AM franklinbacs I am not sure I have not played with IPv6 to much yet but if I find anything I will let you know. I am sure there is some way of doing it but I have yet to dig into it.
Brian
Powered by SMF 1.1.5 |
SMF © 2006-2008, Simple Machines LLC
Joomla Bridge by JoomlaHacks.com |