crafting MITM (Man-in-the-middle) redirects — via arp poisoning

Basic Linux bridging examples w/ iptables adjustments:
brctl addbr br0
brctl addif br0 eth0
brctl addif br0 eth1
ifconfig eth0 promisc up
ifconfig eth1 promisc up
ifconfig br0 netmask broadcast
iptables -A FORWARD -p all -i br0 -j ACCEPT
iptables -t mangle -A FORWARD -m physdev –physdev-in eth0 -j NFQUEUE –queue-num 0
iptables -t mangle -A FORWARD -m physdev –physdev-in eth1 -j NFQUEUE –queue-num 1

Tutorial #1 here:


Cisco Switch security

Upgrade your standards:
The case for changing your tagging standards to tag your native VLANs… The blatant weakness to having untagged native VLANs.

Vulnerability testing tools:
Yersinia hacking tool for testing Cisco vulnerabilities.

Scapy the packet crafter…