Re: Cain & Able man in the middle attack

It depends on where you are looking to do this.  Do you want to do this on
a Cisco device, on a few servers, or just a single machine?  It sounds
like you might be talking about a Windows workstation.  If that's the case
you can use arp -s for your gateway address and maybe any other devices on
your subnet that you talk to a lot.

You can also use something like arpwatch that will look for and notify you
of relevant changes in your arp table.

Steven
http://www.securityzone.org

> I too have performed MITM attacks on my network with Cain & Able. Also
> having grabbed a few HTTP and FTP passwords seeing that it was
> successful I now need to secure my self against these attacks but how
> can I do this? Would static MAC mappings in my hosts files do the
> trick?
>
> Thanks for your time
> Bensley.
>
> ------------------------------------------------------------------------
> This list is sponsored by: Cenzic
>
> Need to secure your web apps NOW?
> Cenzic finds more, "real" vulnerabilities fast.
> Click to try it, buy it or download a solution FREE today!
>
> http://www.cenzic.com/downloads
> ------------------------------------------------------------------------



------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------