[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] Kernel level ARP hijacking

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: [Full-disclosure] Kernel level ARP hijacking
From: Don Bailey <don.bailey@xxxxxxxxx>
Date: Sat, 18 Mar 2006 03:16:06 -0700

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Yes, it's old school, but ARP hijacking is often useful (especially in 
802.11).

KArp is a simple Linux kernel level ARP hijacking utility that is 
easily configured
via ProcFS or via the sysctl mechanism. Because it's not a userland 
tool, and
because it's almost as low as the device driver level of networking 
code (even
lower than the actual ARP code) it's much faster than most ARP 
hijacking tools.

For now, the URL is:
        http://aversion.net/~north/karp/

Don "north" Bailey


-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 9.0.5 (Build 5050)

iQA/AwUBRBvd5l/Ie1ANMtLuEQLdcQCcDBVLJPpBPZBvfiK66wq8VPhEn4kAnAuJ
iRE7rRsbRn76MzQt98wDTU6d
=f3r+
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Prev by Date: [Full-disclosure] Re: Remote overflow in MSIE script action handlers (mshtml.dll)
Next by Date: [Full-disclosure] IMF 2006 - 2nd Call for Papers
Previous by thread: [Full-disclosure] Fwd: Advisory - Mar 17, 2006 - Full Disclosure Mailing List SMTP Flood 0-day Exploit
Next by thread: [Full-disclosure] IMF 2006 - 2nd Call for Papers
Index(es):
- Date
- Thread