Programming an ARP DoS Tool

ARP or Address Resolution Protocol is one of the most important protocols running in LANs. ARP resolves the IP address to MAC address binding on a network and thus facilitates communication. Unfortunately ARP does not have any protocol level security mechanisms built in and also it is transmitted with encryption. This makes it an easy target for both packet sniffing (eavesdropping) and packet spoofing attacks. As the receiver has no way of authenticating the sender, it accepts all spoofed packets as if they were authentic. In this video series we will look at how to program an ARP DoS tool to test and better understand the flaws in ARP.

Please download this file, before you view the presentation

Enable Javascript or Download Flash Playe if you see this!

Links:

1. Packet Injecton Basics

2. Architecture of a Proactive Security tool

3. ARP Basics

4. ARP Spoofing Basics

5. ARP-sk tool

Vivek Ramachandran is a security evangelist and has been working in computer security related fields for the past 7 years. In 2007, Vivek spoke at world renowned conferences Defcon (WEP Cloaking Exposed) and Toorcon (The Caffe Latte Attack). The discovery of the Caffe Latte Attack was covered by CBS5 news, BBC online, Network World etc news agencies.In 2006, Vivek was announced as one of winners of the Microsoft Security Shootout contest held in India among 65,000 participants. He has also been a recipient of a Team Achievement at Cisco Systems for his work on 802.1x and Port Security modules on the Catalyst 6500 switches. Currently he spends all of his time maintaining Security- Freak.Net , SecurityTube.Net and is the founder of an online startup (currently in stealth mode). Vivek, is a Bachelor in Electronics and Communications Engineering from the prestigious Indian Institute of Technology, Guwahati.You can contact him at vivek[at]securitytube.net