ARP SPOOFING - Man in the middle - Part 1

ARP (Address Resolution Protocol) is a communication protocol used for discovering the link layer address. Such as MAC address associated with a given layer address.Using this protocol we can act as a man in the middle.

arp -a in windows

By Typing arp -a you get the ARP table of your windows machine.
Here By using arpspoofing we change the mac address of the Router into our kali machine mac address.
mac address of the router
This is the IP and Mac address of the Router.
Now go to the kali machine which is connected in the same network.
Kali machine IP
IP of our Target is 192.168.1.48 So type the following command in your kali terminal
arpspoof -i eth0 -t 192.168.0.48 192.168.0.1
Open another terminal and Run the following command also.
arpspoof -i eth0 -t 192.168.0.1 192.168.0.48
Arp spoofing window
Now we are in the middle of the connection between windows machine and the router.
check arp table in windows machine by typing arp -a
arp -a in windows after arp spoofing
Here you can see the change that our Router mac is changed to the mac address of our kali machine.
changed Mac address
But we still have a problem that is our kali machine is now acting as a router so it need to activate port forwarding to allow the packets come and go through it. For that type the following command in the kali machine.
echo 1 > /proc/sys/net/ipv4/ip_forward
Ip_forwarding in kali
Now all the packets sending and receiving by the target is captured by our kali machine.
We can get the usernames and passwords typing by the victim using this trick I will explain it in my next post. Stay tuned.....
by