|
-
April 11th, 2007, 03:37 AM
#1
Senior Member
MAC spoof concept
I have got these three PCs :
PC1 source (victim) , and PC3 Destination (Target), PC2 attacker (imporsonate idintity of PC1)
PC1 mac address is : 0000.ffff.aaaa
PC2 mac address is : 0000.ffff.bbbb
PC3 mac address is : 0000.ffff.cccc
They are connected to cisco switch 3550
The term MAC spoofing is the creation of frame with a forged (spoofed) source MAC address (our case 0000.ffff.aaaa ) with the purpose to conceal the identity of the sender (our case PC2) and impersonate the identity of PC1.
If PC2 sends traffic to PC3 (Destination) , PC2 will try to masquerades as PC1 by falsifying its MAC address to be 0000.ffff.aaaa, if this the case what would the benefit be for PC2 (attacker), if all the traffic (as a response to initiated connection from PC2) coming back from PC3 go to PC1 instead of PC2 ?
In this simple scenario I do not have DHCP server , I assigned ip address statically
Last edited by zillah; April 11th, 2007 at 04:59 AM.
Similar Threads
-
By STeRoiD in forum Microsoft Security Discussions
Replies: 0
Last Post: January 12th, 2005, 10:59 PM
-
By sain2rion in forum AntiVirus Discussions
Replies: 2
Last Post: January 3rd, 2005, 06:11 PM
-
By AngelicKnight in forum Firewall & Honeypot Discussions
Replies: 6
Last Post: May 5th, 2004, 04:50 PM
-
By the19man in forum Firewall & Honeypot Discussions
Replies: 16
Last Post: August 29th, 2003, 12:45 AM
-
By E5C4P3 in forum Web Security
Replies: 0
Last Post: March 6th, 2002, 04:51 PM
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|
Reply With Quote