Lesson 7: Introduction to Hacking Networking Devices

Great explanation by Chris McCoy at: https://theartofhacking.org/go/hacking_networks.html

Exercise 7.1

  1. Create a virtual network using two VMs (Kali and any other small Linux VM, as a victim) and use either a physical Layer 3 switch or router; or Open vSwitch.
  2. Use the arping tool to retrieve the MAC address of your router.
  3. Perform a ARP Cache poisoning attack using the arpspoof tool as shown in the video demonstration and use the dsniff tool to capture packets. dsniff is a collection of tools created by Dug Song. These are used for network auditing and penetration testing including dsniff, filesnarf, mailsnarf, msgsnarf, urlsnarf, and webspy (used to passively monitor a network).

Exercise 7.2

  1. Become familiarized with scapy with this video and these docs. Feel free to use this scapy cheatsheet.
  2. A good way is to go over the interactive tutorial here.
  3. Create a scapy script that will allow you to:
    1. retrieve the MAC address of your router
    2. Perform the ARP cache poisoning attack that you completed using arpspoof. Then use dsniff to passively monitor the traffic.

Exercise 7.3

  1. Perform a MiTM attack using socat, mitmproxy, and ettercap, following the instructions in this video.

Exercise 7.4 (Optional VIRL Setup)

  1. Watch this video about how to create a quick lab using the Virtual Internet Routing Lab Personal Edition (VIRL PE) lab infrastructure (not free!). VIRL is a powerful network virtualization and orchestration platform that enables the development of highly accurate models of existing or planned networks.

  2. Download the VIRL topology files and follow along these demonstrations.

results matching ""

    No results matching ""