Wireshark for Ethical Hackers - 3

Wireshark for Ethical Hackers - 3

Blue Team - Defender View
nmap

Attacker IP: 192.168.1.17

Defender IP: 192.168.1.15

Case 1: Run following syn attack command on attacker machine.

nmap 192.168.1.15

image-20220222152915340

filter: tcp.flags == 0x002

image-20220222153227624

Case2: Run following syn attack command on attacker machine. - More slower attack.

nmap -T1 192.168.1.15

image-20220222153848678

Harder to find this attack.

image-20220222160137933

ARPspoof

Install dsniff on the attracter's VM.

sudo apt-get install dsniff

image-20220303092116544

arpspoof

image-20220303092412420

Start the exploit.

sudo arpspoof -i eth0 -t 192.168.1.15 -r 192.168.1.1

image-20220303095017046

Let's go back to Wireshark on victim's VM. Duplicate IP address detected.

image-20220303095905909

Reference:

How to solve error:

arpspoof: libnet_init(): UID or EUID of 0 required

https://www.edureka.co/community/37892/arpspoof-libnet-init-uid-or-euid-of-0-required

posted @ 2022-03-03 10:01  晨风_Eric  阅读(32)  评论(0编辑  收藏  举报