The use of Arpspoof and several other tools

Arpspoof is a tool for ARP spoofing

Arpspoof-i nic-t destination IP default gateway

If the Kali is not IP-forwarding then the target will be disconnected because of the misconfiguration of the network. This is called ARP break-out attack.

1 >/proc/sys/net/ipv4/ip_forward

0 >/proc/sys/net/ipv4/ip_forward

To see if IP forwarding was successful: Cat/proc/sys/net/ipv4/ip_forward  if display 1 indicates success, 0 turns on failed

When IP forwarding is turned on, the traffic passes through the Kali host and then goes to the target so that the target will not break the net when the Arpspoof is turned on.

Because the traffic passes through the Kali mainframe, then we can do something.

Like what:

Get the picture that the destination host is accessing--tools Arpspoof and Driftnet

Turn on Arpspoof after routing is turned on because traffic passes through the Kali host we can use Driftnet to get the picture in the traffic

Session hijacking--tools Arpspoof and Wireshark, Ferret, hamster

Wireshark  Grab Bag tool Ferret  Convert. pcap files to. txt to hamster
Hamster re-releasing traffic

1. Turn on IP forwarding and arpspoof

2. Grab the bag with Wireshark and report it to the/root/directory (file format. pcap), enter Wireshark directly on the command line to open the tool

3. Switch to the/root/directory with a CD ferret convert Wireshark saved. pcap format files to txt files

4. Replay traffic with Hamster

Hamster Usage: hamster-  H

5. Set the agent 127.0.0.1:1234 in the browser and then access the 127.0.0.1:1234

If the target IP appears below the browser, the failure is unsuccessful.

Click on the tab to the left of the browser will appear a lot of URLs these are the target to visit the site click on these URLs can be

~~~~~

Get the target HTTP account password

1. Turn on IP forwarding and arpspoof

2. Turn on Ettercap

Ettercap-tq-i NIC

If the target is logged in to a website, then we can get his account password.

The use of Arpspoof and several other tools