RE: Sniffing on a switch

From: Todd Towles (toddtowles@brookshires.com)
Date: Mon Oct 31 2005 - 10:30:21 EST


If you don't have port forwarding in your Linux kernel that would be a
problem..however. Ettercap creates a MITM attack.

> -----Original Message-----
> From: mike jablonski [mailto:mkj@swissmail.org]
> Sent: Saturday, October 29, 2005 12:19 AM
> To: Andy Meyers
> Cc: pen-test@securityfocus.com
> Subject: Re: Sniffing on a switch
>
> hahaha YES you can!! ;)
>
> http://ettercap.sourceforge.net/
>
> This is a great sniffing tool. If you don't have admin
> rights to setup mirroring on the switch; use ettercap.
>
> Have fun!
> --
> jabber
> "paranoid by default"
>
>
> Quoting Andy Meyers <andy.meyers@hushmail.com>:
>
> > -----BEGIN PGP SIGNED MESSAGE-----
> > Hash: SHA1
> >
> > Now i know people say you "cant" sniff on a switch and I
> know about ARP
> > poisoning and MAC flooding. But there has to be another
> way. I have heard
> > too many stories about "he sniffed my AIM conversation on a
> Cisco switch"
> > (an example is in the most recent version of 2600). Does
> anyone know of any
> > technique how to do this? Can you ARP poison a switch?
> >
> > Ashes
> > -----BEGIN PGP SIGNATURE-----
> > Note: This signature can be verified at
> https://www.hushtools.com/verify/
> > Version: Hush 2.4
> > Charset: UTF8
> >
> > wkYEARECAAYFAkNhkwYACgkQnZu7yPmLRpArTQCgp2JsbOSySZJ7XFvgy1sY4GcGntYA
> > oIwtV7CLTBjr5j2yW0v1In/Jm7Yv
> > =rigp
> > -----END PGP SIGNATURE-----
> >
> >
> >
> --------------------------------------------------------------
> ----------------
> > Audit your website security with Acunetix Web Vulnerability
> Scanner:
> >
> > Hackers are concentrating their efforts on attacking
> applications on your
> > website. Up to 75% of cyber attacks are launched on
> shopping carts, forms,
> > login pages, dynamic content etc. Firewalls, SSL and
> locked-down servers are
> >
> > futile against web application hacking. Check your website for
> > vulnerabilities
> > to SQL injection, Cross site scripting and other web
> attacks before hackers
> > do!
> > Download Trial at:
> >
> > http://www.securityfocus.com/sponsor/pen-test_050831
> >
> --------------------------------------------------------------
> -----------------
> >
> >
>
>
> --------------------------------------------------------------
> ----------------
> Audit your website security with Acunetix Web Vulnerability Scanner:
>
> Hackers are concentrating their efforts on attacking
> applications on your
> website. Up to 75% of cyber attacks are launched on shopping
> carts, forms,
> login pages, dynamic content etc. Firewalls, SSL and
> locked-down servers are
> futile against web application hacking. Check your website
> for vulnerabilities
> to SQL injection, Cross site scripting and other web attacks
> before hackers do!
> Download Trial at:
>
> http://www.securityfocus.com/sponsor/pen-test_050831
> --------------------------------------------------------------
> -----------------
>
>

------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner:

Hackers are concentrating their efforts on attacking applications on your
website. Up to 75% of cyber attacks are launched on shopping carts, forms,
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
futile against web application hacking. Check your website for vulnerabilities
to SQL injection, Cross site scripting and other web attacks before hackers do!
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------



This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:55:07 EDT